Free Amazon DOP-C02 Exam Questions

Question 1

A DevOps engineer is creating a CI/CD pipeline to build container images. The engineer needs to store container images in Amazon Elastic Container Registry (Amazon ECR) and scan the images for common vulnerabilities. The CI/CD pipeline must be resilient to outages in upstream source container image repositories. Which solution will meet these requirements?

A : Create an ECR private repository in the private registry to store the container images and scan images when images are pushed to the repository. Configure a replication rule in the private registry to replicate images from upstream repositories.

B : Create an ECR public repository in the public registry to cache images from upstream source repositories. Create an ECR private repository to store images. Configure the private repository to scan images when images are pushed to the repository.

C : Create an ECR public repository in the public registry. Configure a pull through cache rule for the repository. Create an ECR private repository to store images. Configure the ECR private registry to perform basic scanning.

D : Create an ECR private repository in the private registry to store the container images. Enable basic scanning for the private registry, and create a pull through cache rule.

Answer: C

Question 2

You are developing a mobile quiz app hosted on AWS and you’re using AWS CodeDeploy to deploy the application on your cluster of EC2 instances. There is a hotfix that need to be applied after the scheduled deployment. These are files not included on the current application revision so you uploaded them manually to the target instances. On the next application release, the hotfix files were included on the new revision but your deployment fails so CodeDeploy auto rollbacks to the previous version. However, you have noticed that the hotfix files that you’ve manually added were missing, and the application is not working properly.

Which of the following is the possible cause and how will you prevent it from happening in the future?

A : default, CodeDeploy retains all files on the deployment location but the auto rollback will deploy the old revision files cleanly. You should choose “Fail the deployment” option for future deployments so that only the files included in the old app revision will be deployed and the existing contents will be retained.

B : default, CodeDeploy removes all files on the deployment location and the auto rollback will deploy the old revision files cleanly. You should choose “Overwrite the content” option for future deployments so that only the files included in the old app revision will be overwritten and the existing contents will be retained.

C : default, CodeDeploy retains all files on the deployment location but the auto rollback will deploy the old revision files cleanly. You should choose “Overwrite the content” option for future deployments so that only the files included in the old app revision will be overwritten and the existing contents will be retained.

D : default, CodeDeploy removes all files on the deployment location and the auto rollback will deploy the old revision files cleanly. You should choose “Retain the content” option for future deployments so that only the files included in the old app revision will be deployed and the existing contents will be retained.

Answer: D

Question 3

You are working on a web application that allows designers to create mobile themes for their android phones. The app is hosted on a cluster of Auto Scaling ECS instances and its deployments are handled by AWS CodeDeploy. ALB health checks are not sufficient to tell that new version deployments are successful, rather you have custom validation scripts that verify all APIs of the application. You want to make sure that there are no 5XX error replies on the new version before continuing production deployment and that you are notified via email if results failed. You also want to configure automatic rollback to the older version when the validation fails.

Which combination of options should you implement to meet this requirement? (Select THREE.)

A : ociate CloudWatch Alarms to your deployment group to have it trigger a rollback when the 5xx error alarm is active.

B : eate your validation scripts on AWS Lambda and invoke them after deployment to validate your new app version.

C : ve AWS CloudWatch Alarms trigger an AWS SNS notification when the threshold for 5xx is reached on CloudWatch.

D : ve Lambda send results to AWS CloudWatch Alarms directly and trigger a rollback when 5xx reply errors are received during deployment.

E : ve AWS Lambda trigger an AWS SNS notification after performing the validation of the new app revision.

F : eate your validation scripts on AWS Lambda and define the functions on the AppSpec lifecycle hook to validate the app using test traffic.

Answer: A,C

Question 4

You are developing a mobile news homepage that curates several news sources to a single page. The app is mainly composed of several Lambda functions configured as a deployment group on AWS CodeDeploy. For each new app version, you need to test all APIs before fully deploying it to production. The APIs are using a set of AWS Lambda validation scripts. You want the ability to check the APIs during deployments and be notified for any API errors as well as automatic rollback if the validation fails.

Which combination of the options below can help you implement a solution for this scenario? (Select THREE)

A : fine your Lambda validation scripts on the AppSpec lifecycle hook during deployment to run the validation using test traffic and trigger a rollback if checks fail.

B : ve Lambda send results to AWS CloudWatch Alarms directly and trigger a rollback when 5xx reply errors are received during deployment.

C : a step on AWS CodeDeploy to trigger your Lambda validation scripts after deployment and invoke them after deployment to validate your new app version.

D : nfigure your Lambda validation scripts to run during deployment and configure a CloudWatch Alarm that will trigger a rollback when the function validation fails.

E : ve CodeDeploy run the AWS Lambda validations after the deployment so you can test with production traffic. When errors are found, have another trigger to rollback the deployment.

F : ociate an AWS CloudWatch Alarm to your deployment group that can send a notification to an AWS SNS topic when threshold for 5xx is reached on CloudWatch.

Answer: A,D

Question 5

A SaaS company uses ECS (Fargate) behind an ALB and CodePipeline + CodeDeploy for blue/green deployments. They need automatic, incremental traffic shifting over time with no downtime. Which solution will meet these requirements?

A : Use TimeBasedLinear in appspec.yaml with defined percentage and interval.

B : Use AllAtOnce deployment configuration.

C : Use TimeBasedCanary.

D : Configure weighted routing on ALB manually.

Answer: A