DOP-C02 Exam Questions
498 real DOP-C02 exam questions with expert-verified answers and explanations. Page 3 of 10.
- Question #103Configuration Management and IaC
A company wants to use a grid system for a proprietary enterprise in-memory data store on top of AWS. This system can run in multiple server nodes in any Linux-based distribution....
Configuration managementOpsWorksChefEC2 cluster - Question #104Reliability & Resilience
A DevOps engineer is working on a data archival project that requires the migration of on- premises data to an Amazon S3 bucket. The DevOps engineer develops a script that incremen...
S3 data integrityMD5 checksumETagS3 PutObject - Question #105SDLC Automation
A company deploys updates to its Amazon API Gateway API several times a week by using an AWS CodePipeline pipeline. As part of the update process, the company exports the JavaScrip...
CodePipelineAPI GatewayDeployment AutomationSDK Management - Question #106SDLC Automation
A company has developed an AWS Lambda function that handles orders received through an API. The company is using AWS CodeDeploy to deploy the Lambda function as the final stage of...
AWS CodeDeployLambda DeploymentDeployment HooksCI/CD - Question #107Security & Compliance
A company uses a single AWS account to test applications on Amazon EC2 instances. The company has turned on AWS Config in the AWS account and has activated the restricted-ssh AWS C...
AWS ConfigEventBridgeSNSreal-time monitoring - Question #108Reliability & Resilience
A company requires an RPO of 2 hours and an RTO of 10 minutes for its data and application at all times. An application uses a MySQL database and Amazon EC2 web servers. The develo...
Disaster RecoveryHigh AvailabilityAurora Global DatabaseRoute 53 Failover - Question #109SDLC Automation
A business has an application that consists of five independent AWS Lambda functions. The DevOps engineer has built a CI/CD pipeline using AWS CodePipeline and AWS CodeBuild that b...
CI/CD OptimizationAWS CodePipelineParallel ProcessingPipeline Performance - Question #110Configuration Management and IaC
A company uses AWS CloudFormation stacks to deploy updates to its application. The stacks consist of different resources. The resources include AWS Auto Scaling groups, Amazon EC2...
CloudFormationstack updatesdeployment errorsIAM permissions - Question #111Monitoring & Logging
A company is deploying a new application that uses Amazon EC2 instances. The company needs a solution to query application logs and AWS account API activity. Which solution will me...
CloudWatch LogsCloudTrailEC2 loggingAPI activity logging - Question #112Security & Compliance
A company wants to ensure that their EC2 instances are secure. They want to be notified if any new vulnerabilities are discovered on their instances, and they also want an audit tr...
Amazon InspectorEC2 securityvulnerability managementlogin auditing - Question #113Incident & Event Response
A company is running an application on Amazon EC2 instances in an Auto Scaling group. Recently, an issue occurred that prevented EC2 instances from launching successfully, and it t...
Auto Scaling groupinstance launch failuresSNS notificationsoperational alerts - Question #114Security & Compliance
A company is using AWS Organizations to centrally manage its AWS accounts. The company has turned on AWS Config in each member account by using AWS CloudFormation StackSets. The co...
AWS ConfigAWS Organizationsconformance packscentralized compliance - Question #115Reliability & Resilience
A DevOps engineer manages a large commercial website that runs on Amazon EC2. The website uses Amazon Kinesis Data Streams to collect and process web logs. The DevOps engineer mana...
Kinesis Data StreamsAuto ScalingEC2Application Scaling - Question #116Security and Compliance
A company recently created a new AWS Control Tower landing zone in a new organization in AWS Organizations. The landing zone must be able to demonstrate compliance with the Center...
Security HubAWS OrganizationsComplianceIAM Identity Center - Question #117Security and Compliance
A company runs applications in AWS accounts that are in an organization in AWS Organizations. The applications use Amazon EC2 instances and Amazon S3. The company wants to detect p...
GuardDutyAWS OrganizationsThreat DetectionSNS - Question #118Monitoring and Logging
A company's DevOps engineer is working in a multi-account environment. The company uses AWS Transit Gateway to route all outbound traffic through a network operations account. In t...
CloudWatch LogsMetric FiltersCloudWatch AlarmsCentralized Logging - Question #119Security and Compliance
A company is divided into teams. Each team has an AWS account, and all the accounts are in an organization in AWS Organizations. Each team must retain full administrative rights to...
AWS OrganizationsService Control Policies (SCPs)Multi-Account GovernanceIAM - Question #120Configuration Management and Infrastructure as Code
A DevOps engineer used an AWS CloudFormation custom resource to set up AD Connector. The AWS Lambda function ran and created AD Connector, but CloudFormation is not transitioning f...
CloudFormation Custom ResourcesAWS LambdaCloudFormation Troubleshooting - Question #121Security and Compliance
A company uses AWS CodeCommit for source code control. Developers apply their changes to various feature branches and create pull requests to move those changes to the main branch...
IAM PoliciesCodeCommitGit Branch ProtectionExplicit Deny - Question #122Reliability & Resilience
A company manages a web application that runs on Amazon EC2 instances behind an Application Load Balancer (ALB). The EC2 instances run in an Auto Scaling group across multiple Avai...
Disaster RecoveryRTO RPOCross-Region ReplicationRDS - Question #123Security and Compliance
A large enterprise is deploying a web application on AWS. The application runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Auto Scaling gro...
IAM RolesSecrets ManagementSecurity Best PracticesCredential Management - Question #124Incident & Event Response
The security team depends on AWS CloudTrail to detect sensitive security issues in the company's AWS account. The DevOps engineer needs a solution to auto-remediate CloudTrail bein...
CloudTrailEventBridgeAWS LambdaSecurity Remediation - Question #125SDLC Automation
A company uses AWS CodeArtifact to centrally store Python packages. The CodeArtifact repository is configured with the following repository policy: A development team is building a...
CodeArtifactVPC EndpointsIAM PermissionsCodeBuild - Question #126Configuration Management and Infrastructure as Code
A company uses a series of individual Amazon CloudFormation templates to deploy its multi- Region applications. These templates must be deployed in a specific order. The company is...
CloudFormationNested StacksStackSetsDeployment Automation - Question #127Configuration Management and Infrastructure as Code
A DevOps engineer has implemented a CI/CD pipeline to deploy an AWS CloudFormation template that provisions a web application. The web application consists of an Application Load B...
CloudFormationcfn-signalAuto Scaling GroupDeployment Troubleshooting - Question #128Configuration Management and Infrastructure as Code
A company has a data ingestion application that runs across multiple AWS accounts. The accounts are in an organization in AWS Organizations. The company needs to monitor the applic...
EC2 Image BuilderSystems Manager AgentCustom AMIsPatch Management - Question #129Security and Compliance
A company uses Amazon S3 to store proprietary information. The development team creates buckets for new projects on a daily basis. The security team wants to ensure that all existi...
AWS ConfigS3 SecurityAutomatic RemediationCompliance - Question #130Resilient Cloud Solutions
A DevOps engineer is researching the least expensive way to implement an image batch processing cluster on AWS. The application cannot run in Docker containers and must run on Amaz...
EC2 Spot InstancesAmazon EFSCustom AMIsCost Optimization - Question #131SDLC Automation
A company recently migrated its legacy application from on-premises to AWS. The application is hosted on Amazon EC2 instances behind an Application Load Balancer, which is behind A...
Blue/Green DeploymentAPI GatewayApplication Load BalancerRollback - Question #132Monitoring and Logging
A company is storing 100 GB of log data in .csv format in an Amazon S3 bucket. SQL developers want to query this data and generate graphs to visualize it. The SQL developers also n...
Amazon AthenaAWS Glue Data CatalogAmazon QuickSightS3 Data Lake - Question #133Configuration Management and Infrastructure as Code
A company deploys its corporate infrastructure on AWS across multiple AWS Regions and Availability Zones. The infrastructure is deployed on Amazon EC2 instances and connects with A...
AWS Systems ManagerPatch ManagerHybrid CloudIAM Instance Profiles - Question #134Reliability & Resilience
A company is testing a web application that runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Auto Scaling group across multiple Availabilit...
Session ManagementElastiCacheBlue/Green DeploymentDistributed Systems - Question #135SDLC Automation
A DevOps engineer needs to configure a blue/green deployment for an existing three-tier application. The application runs on Amazon EC2 instances and uses an Amazon RDS database. T...
Blue/Green DeploymentAWS Auto ScalingApplication Load BalancerEC2 - Question #136SDLC Automation
A company is building a new pipeline by using AWS CodePipeline and AWS CodeBuild in a build account. The pipeline consists of two stages. The first stage is a CodeBuild job to buil...
AWS CodePipelineCross-Account AccessIAM RolesKMS - Question #137Resilient Cloud Solutions
A company is using an organization in AWS Organizations to manage multiple AWS accounts. The company's development team wants to use AWS Lambda functions to meet resiliency require...
AWS LambdaAmazon EFSVPC PeeringCross-Account Access - Question #138Monitoring & Logging
A media company has several thousand Amazon EC2 instances in an AWS account. The company is using Slack and a shared email inbox for team communications and important updates. A De...
Amazon EventBridgeAWS Health DashboardEC2 MaintenanceNotifications - Question #139Monitoring & Logging
An AWS CodePipeline pipeline has implemented a code release process. The pipeline is integrated with AWS CodeDeploy to deploy versions of an application to multiple Amazon EC2 inst...
AWS CodePipelineAWS CodeDeployAmazon EventBridgeNotifications - Question #140Security & Compliance
A global company manages multiple AWS accounts by using AWS Control Tower. The company hosts internal applications and public applications. Each application team in the company has...
IAM RolesCross-Account AccessAWS OrganizationsCI/CD Permissions - Question #141Security & Compliance
A highly regulated company has a policy that DevOps engineers should not log in to their Amazon EC2 instances except in emergencies. If a DevOps engineer does log in, the security...
Amazon EC2CloudWatch LogsCloudWatch AgentLogin Monitoring - Question #142Configuration Management & Infrastructure as Code
A company updated the AWS CloudFormation template for a critical business application. The stack update process failed due to an error in the updated template, and AWS CloudFormati...
AWS CloudFormationStack RollbackUPDATE_ROLLBACK_FAILEDIaC Troubleshooting - Question #143SDLC Automation
A development team manually builds an artifact locally and then places it in an Amazon S3 bucket. The application has a local cache that must be cleared when a deployment occurs. T...
CI/CDAWS CodePipelineAWS CodeBuildAWS CodeDeploy - Question #144Security & Compliance
A DevOps engineer is working on a project that is hosted on Amazon Linux and has failed a security review. The DevOps manager has been asked to review the company buildspec.yaml fi...
Secrets ManagementIAM Best PracticesAWS Systems ManagerCodeBuild Security - Question #145SDLC Automation
A company has a legacy application. A DevOps engineer needs to automate the process of building the deployable artifact for the legacy application. The solution must store the depl...
Build AutomationLegacy ApplicationsDockerOperational Efficiency - Question #146SDLC Automation
A company builds a container image in an AWS CodeBuild project by running Docker commands. After the container image is built, the CodeBuild project uploads the container image to...
AWS CodeBuildAmazon ECRContainer Imagesbuildspec.yml - Question #147Security & Compliance
A company manually provisions IAM access for its employees. The company wants to replace the manual process with an automated process. The company has an existing Active Directory...
AWS IAM Identity CenterSAML 2.0SCIMAccess Management - Question #148Security & Compliance
A company is using AWS to run digital workloads. Each application team in the company has its own AWS account for application hosting. The accounts are consolidated in an organizat...
AWS ConfigCompliance MonitoringSecurity MisconfigurationConfiguration Drift - Question #149Security & Compliance
A company uses AWS Organizations to manage its AWS accounts. The organization root has an OU that is named Environments. The Environments OU has two child OUs that are named Develo...
AWS OrganizationsService Control Policies (SCPs)IAM PermissionsLeast Privilege - Question #150Resilient Cloud Solutions
A company is examining its disaster recovery capability and wants the ability to switch over its daily operations to a secondary AWS Region. The company uses AWS CodeCommit as a so...
Disaster RecoveryCodeCommitMulti-RegionSource Control - Question #151SDLC Automation
A DevOps team is merging code revisions for an application that uses an Amazon RDS Multi-AZ DB cluster for its production database. The DevOps team uses continuous integration to p...
Amazon RDSDatabase TestingCI/CDSnapshots - Question #152Incident & Event Response
A company manages a multi-tenant environment in its VPC and has configured Amazon GuardDuty for the corresponding AWS account. The company sends all GuardDuty findings to AWS Secur...
Amazon GuardDutyAWS Network FirewallAWS LambdaSecurity Automation