Free Amazon DOP-C02 Exam Questions

Question 1

A company uses AWS Control Tower and Organizations for a multi-account environment. It needs to create new accounts and ensure they receive a consistent baseline configuration. Which solution meets the requirement with the least overhead?

A : Use Account Factory Customization (AFC) blueprints for baseline setup.

B : Use Account Factory + StackSets post-setup.

C : Use Organizations with Lambda applying baseline via access role.

D : Use Organizations + StackSets manually.

Answer: A

Question 2

The company's DevOps engineer discovered that the errors were caused by RDS connection limits being reached. The DevOps engineer also discovered that more than 90% of the API requests are GET requests that read from the DB cluster. How should the DevOps engineer solve this problem with the LEAST development effort?

A : Migrate from Amazon RDS to Amazon DynamoDB. Add an Amazon CloudFront distribution in front of the API Gateway REST API.

B : Add a proxy from Amazon RDS Proxy in front of the RDS DB cluster. Enable API caching in API Gateway.

C : Add an Amazon RDS Proxy in front of the RDS database cluster. Provision an Amazon ElastiCache (Redis OSS) cluster.

D : Migrate from Amazon RDS to Amazon DynamoDB. Enable API caching in API Gateway.

Answer: B

Question 3

A government agency is planning to launch a distributed system in AWS that processes thousands of transactions every day. The agency purchased a proprietary software with 100 licenses, which can be used by a maximum of 100 application servers. A DevOps Engineer needs to set up an automated solution that dynamically allocates the software licenses to the application servers. The Engineer also needs to provide a way to see the list of available licenses that are not in use.

Which of the following options below is the MOST suitable way to accomplish this task?

A : epare a CloudFormation template that uses an Auto Scaling group to launch the EC2 instances with an associated lifecycle hook for Instance Terminate. Store the 100 license codes to AWS Certificate Manager (ACM). Pull an available license from ACM using the User Data script of the instance upon launch. Use the lifecycle hook to update the license mapping after the instance is terminated.

B : epare a CloudFormation template that uses an Auto Scaling group to launch the EC2 instances with an associated lifecycle hook for Instance Terminate. Store the 100 license codes to a public S3 bucket. Pull an available license from the bucket using the User Data script of the instance upon launch. Use the lifecycle hook to update the license mapping after the instance is terminated.

C : epare a CloudFormation template that uses an Auto Scaling group to launch the EC2 instances with an associated lifecycle hook for Instance Terminate. Store the 100 license codes to a DynamoDB table. Pull an available license from the DynamoDB table using the User Data script of the instance upon launch. Use the lifecycle hook to update the license mapping after the instance is terminated.

D : epare a CloudFormation template that uses an Auto Scaling group to launch the EC2 instances. Store the 100 license codes to AWS Systems Manager Parameter Store. Pull an available license from the Systems manager using the instance metadata script of the instance upon launch. Configure the metadata script to update the license mapping after the instance is terminated.

Answer: C

Question 4

A company that uses electronic health records is running a fleet of Amazon EC2 instances with an Amazon Linux operating system. As part of patient privacy requirements, the company must ensure continuous compliance for patches for operating system and applications running on the EC2 instances.

How can the deployments of the operating system and application patches be automated using a default and custom repository?

A : AWS Systems Manager to create a new patch baseline including the custom repository. Run the AWS-RunPatchBaseline document using the run command to verify and install patches.

B : AWS Direct Connect to integrate the corporate repository and deploy the patches using Amazon CloudWatch scheduled events, then use the CloudWatch dashboard to create reports.

C : yum-config-manager to add the custom repository under /etc/yum.repos.d and run yum-config-manager-enable to activate the repository.

D : AWS Systems Manager to create a new patch baseline including the corporate repository. Run the AWS-AmazonLinuxDefaultPatchBaseline document using the run command to verify and install patches.