Free Amazon DOP-C02 Exam Questions

Question 1

A development team manually builds a local artifact. The development team moves the artifact to an Amazon S3 bucket to support an application. The application has a local cache that must be cleared when the development team deploys the application to Amazon EC2 instances. For each deployment, the development team runs a command to clear the cache, download the artifact from the S3 bucket, and unzip the artifact to complete the deployment. The development team wants to migrate the deployment process to a CI/CD process and to track the progress of each deployment. Which combination of actions will meet these requirements with the MOST operational efficiency? (Select THREE.)

A : Set up an AWS CodeConnections compatible Git repository. Allow developers to merge code into the repository. Use AWS CodeBuild to build an artifact and copy the object into the S3 bucket. Configure CodeBuild to run for every merge into the main branch.

B : Create a custom script to clear the cache. Specify the script in the BeforeInstall lifecycle hook in the AppSpec file.

C : Create user data for each EC2 instance that contains the cache clearing script. Test the application after deployment. If the deployment is not successful, then redeploy.

D : Use AWS CodePipeline to deploy the application. Set up an AWS CodeConnections compatible Git repository. Allow developers to merge code into the repository as a source for the pipeline.

E : Use AWS CodeBuild to build the artifact and place the artifact in the S3 bucket. Use AWS CodeDeploy to deploy the artifact to EC2 instances.

F : Use AWS Systems Manager to fetch the artifact from the S3 bucket and to deploy the artifact to all the EC2 instances.

Answer: B,D,E

Question 2

Your API servers are hosted on a cluster of EC2 instances deployed using Elastic Beanstalk. You need to deploy a new version and also change the instance type of the instances from m4.large to m4.xlarge. Since this is a production workload already operating at 80?pacity, you want to ensure that the workload on the current EC2 instances does not increase while doing the deployment.

Which of the following deployment policy will you implement which will incur the LEAST amount of cost?

A : Immutable as deployment policy to deploy the new version with complete capacity.

B : Rolling as the deployment policy to maintain the capacity of the cluster during the deployment.

C : All at once as deployment policy to deploy the new version with complete capacity.

D : Rolling with additional batch as deployment policy to maintain the capacity of the cluster during the deployment.

Answer: D

Question 3

You are developing a mobile quiz app hosted on AWS and you’re using AWS CodeDeploy to deploy the application on your cluster of EC2 instances. There is a hotfix that need to be applied after the scheduled deployment. These are files not included on the current application revision so you uploaded them manually to the target instances. On the next application release, the hotfix files were included on the new revision but your deployment fails so CodeDeploy auto rollbacks to the previous version. However, you have noticed that the hotfix files that you’ve manually added were missing, and the application is not working properly.

Which of the following is the possible cause and how will you prevent it from happening in the future?

A : default, CodeDeploy retains all files on the deployment location but the auto rollback will deploy the old revision files cleanly. You should choose “Fail the deployment” option for future deployments so that only the files included in the old app revision will be deployed and the existing contents will be retained.

B : default, CodeDeploy removes all files on the deployment location and the auto rollback will deploy the old revision files cleanly. You should choose “Overwrite the content” option for future deployments so that only the files included in the old app revision will be overwritten and the existing contents will be retained.

C : default, CodeDeploy retains all files on the deployment location but the auto rollback will deploy the old revision files cleanly. You should choose “Overwrite the content” option for future deployments so that only the files included in the old app revision will be overwritten and the existing contents will be retained.

D : default, CodeDeploy removes all files on the deployment location and the auto rollback will deploy the old revision files cleanly. You should choose “Retain the content” option for future deployments so that only the files included in the old app revision will be deployed and the existing contents will be retained.

Answer: D

Question 4

A company’s DevOps engineer is working in a multi-account environment. The company uses AWS Transit Gateway to route all outbound traffic through a network operations account. In the network operations account, all account traffic passes through a firewall appliance for inspection before the traffic goes to an internet gateway.

The firewall appliance sends logs to Amazon CloudWatch Logs and includes event severities of CRITICAL, HIGH, MEDIUM, LOW, and INFO. The security team wants to receive an alert if any CRITICAL events occur.

What should the DevOps engineer do to meet these requirements?

A : eate an Amazon CloudWatch Synthetics canary to monitor the firewall state. If the firewall reaches a CRITICAL state or logs a CRITICAL event, use a CloudWatch alarm to publish a notification to an Amazon Simple Notification Service (Amazon SNS) topic. Subscribe the security team’s email address to the topic.

B : eate an Amazon CloudWatch metric filter by using a search for CRITICAL events. Publish a custom metric for the finding. Use a CloudWatch alarm based on the custom metric to publish a notification to an Amazon Simple Notification Service (Amazon SNS) topic. Subscribe the security team’s email address to the topic.

C : able Amazon GuardDuty in the network operations account. Configure GuardDuty to monitor flow logs. Create an Amazon EventBridge event rule that is invoked by GuardDuty events that are CRITICAL. Define an Amazon Simple Notification Service (Amazon SNS) topic as a target. Subscribe the security team’s email address to the topic.

D : AWS Firewall Manager to apply consistent policies across all accounts. Create an Amazon EventBridge event rule that is invoked by Firewall Manager events that are CRITICAL. Define an Amazon Simple Notification Service (Amazon SNS) topic as a target. Subscribe the security team’s email address to the topic.

Answer: B

Question 5

A company has a web application that is hosted on Amazon EC2 instances. The company is deploying the application into multiple AWS Regions. The application consists of dynamic content such as WebSocket-based real-time product updates. The company uses Amazon Route 53 to manage all DNS records. Which solution will provide multi-Region access to the application with the LEAST latency?

A : Deploy an Application Load Balancer (ALB) in front of the EC2 instances in each Region. Create a Route 53 A record with a latency-based routing policy. Add IP addresses of the ALBs as the value of the record.

B : Deploy an Application Load Balancer (ALB) in front of the EC2 instances in each Region. Deploy an Amazon CloudFront distribution with an origin group that contains the ALBs as origins. Create a Route 53 alias record that points to the CloudFront distribution's DNS address.

C : Deploy a Network Load Balancer (NLB) in front of the EC2 instances in each Region. Create a Route 53 A record with a multivalue answer routing policy. Add IP addresses of the NLBs as the value of the record.

D : Deploy a Network Load Balancer (NLB) in front of the EC2 instances in each Region. Deploy an AWS Global Accelerator standard accelerator with an endpoint group for each NLB. Create a Route 53 alias record that points to the accelerator's DNS address.

Answer: A