Free Amazon DOP-C02 Exam Questions

Question 1

A company is testing a web application that runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Auto Scaling group across multiple Availability Zones. The company uses a blue/green deployment process with immutable instances when deploying new software.

During testing, users are being automatically logged out of the application at random times. Testers also report that, when a new version of the application is deployed, all users are logged out. The development team needs a solution to ensure users remain logged in across scaling events and application deployments.

What is the MOST operationally efficient way to ensure users remain logged in?

A : able smart sessions on the load balancer and modify the application to check for an existing session.

B : able session sharing on the load balancer and modify the application to read from the session store.

C : re user session information in an Amazon S3 bucket and modify the application to read session information from the bucket.

D : dify the application to store user session information in an Amazon ElastiCache cluster.

Answer: D

Question 2

A company uses AWS Control Tower and Organizations for a multi-account environment. It needs to create new accounts and ensure they receive a consistent baseline configuration. Which solution meets the requirement with the least overhead?

A : Use Account Factory Customization (AFC) blueprints for baseline setup.

B : Use Account Factory + StackSets post-setup.

C : Use Organizations with Lambda applying baseline via access role.

D : Use Organizations + StackSets manually.

Answer: A

Question 3

A company that uses electronic health records is running a fleet of Amazon EC2 instances with an Amazon Linux operating system. As part of patient privacy requirements, the company must ensure continuous compliance for patches for operating system and applications running on the EC2 instances.

How can the deployments of the operating system and application patches be automated using a default and custom repository?

A : AWS Systems Manager to create a new patch baseline including the custom repository. Run the AWS-RunPatchBaseline document using the run command to verify and install patches.

B : AWS Direct Connect to integrate the corporate repository and deploy the patches using Amazon CloudWatch scheduled events, then use the CloudWatch dashboard to create reports.

C : yum-config-manager to add the custom repository under /etc/yum.repos.d and run yum-config-manager-enable to activate the repository.

D : AWS Systems Manager to create a new patch baseline including the corporate repository. Run the AWS-AmazonLinuxDefaultPatchBaseline document using the run command to verify and install patches.

Answer: A

Question 4

Your API servers are hosted on a cluster of EC2 instances deployed using Elastic Beanstalk. You need to deploy a new version and also change the instance type of the instances from m4.large to m4.xlarge. Since this is a production workload already operating at 80?pacity, you want to ensure that the workload on the current EC2 instances does not increase while doing the deployment.

Which of the following deployment policy will you implement which will incur the LEAST amount of cost?

A : Immutable as deployment policy to deploy the new version with complete capacity.

B : Rolling as the deployment policy to maintain the capacity of the cluster during the deployment.

C : All at once as deployment policy to deploy the new version with complete capacity.

D : Rolling with additional batch as deployment policy to maintain the capacity of the cluster during the deployment.

Answer: D

Question 5

A DevOps engineer needs a resilient CI/CD pipeline that builds container images, stores them in ECR, scans images for vulnerabilities, and is resilient to outages in upstream source image repositories. Which solution meets this?

A : Create a private ECR repo, scan images on push, replicate images from upstream repos with a replication rule.

B : Create a private ECR repo, scan images on push, replicate images from upstream repos with a replication rule

C : Create a public ECR repo, configure a pull-through cache rule, create a private repo to store images, enable basic scanning.

D : Create a private ECR repo, enable basic scanning, create a pull-through cache rule.

Answer: D