DOP-C02 Exam: Absolutely Free Online Practice

Question 1
- Which combination of steps will meet these requirements? (Select THREE.)
  A : Create a global table replica of the DynamoDB table in a second Region.
  
  B : Create a global secondary index for the DynamoDB table.
  
  C : Create copies of the REST API and the Lambda functions in a second Region.
  
  D : Create health checks in Amazon Route 53. Create DNS records that include a failover routing policy.
  
  E : Create health checks in Amazon Route 53. Create DNS records that include a latency routing policy.
  
  F : Create DNS records in Amazon Route 53 that include a multivalue answer routing policy.
  
  Answer: A,C,E
Question 2
- The company's DevOps engineer discovered that the errors were caused by RDS connection limits being reached. The DevOps engineer also discovered that more than 90% of the API requests are GET requests that read from the DB cluster. How should the DevOps engineer solve this problem with the LEAST development effort?
  A : Migrate from Amazon RDS to Amazon DynamoDB. Add an Amazon CloudFront distribution in front of the API Gateway REST API.
  
  B : Add a proxy from Amazon RDS Proxy in front of the RDS DB cluster. Enable API caching in API Gateway.
  
  C : Add an Amazon RDS Proxy in front of the RDS database cluster. Provision an Amazon ElastiCache (Redis OSS) cluster.
  
  D : Migrate from Amazon RDS to Amazon DynamoDB. Enable API caching in API Gateway.
  
  Answer: B
Question 3
- A SaaS company uses ECS (Fargate) behind an ALB and CodePipeline + CodeDeploy for blue/green deployments. They need automatic, incremental traffic shifting over time with no downtime. Which solution will meet these requirements?
  A : Use TimeBasedLinear in appspec.yaml with defined percentage and interval.
  
  B : Use AllAtOnce deployment configuration.
  
  C : Use TimeBasedCanary.
  
  D : Configure weighted routing on ALB manually.
  
  Answer: A
Question 4
- A company has an application that stores data that includes personally identifiable information (PII) in an Amazon S3 bucket. All data is encrypted with AWS Key Management Service (AWS KMS) customer managed keys. All AWS resources are deployed from an AWS CloudFormation template.
  A DevOps engineer needs to set up a development environment for the application in a different AWS account. The data in the development environment's S3 bucket needs to be updated once a week from the production environment's S3 bucket.
  The company must not move PII from the production environment without anonymizing the PII first. The data in each environment must be encrypted with different KMS customer managed keys.
  Which combination of steps should the DevOps engineer take to meet these requirements? (Choose two.)
  A : Activate Amazon Macie on the S3 bucket in the production account. Create an AWS Step Functions state machine to initiate a discovery job and redact all PII before copying files to the S3 bucket in the development account. Give the state machine tasks decrypt permissions on the KMS key in the production account. Give the state machine tasks encrypt permissions on the KMS key in the development account.
  
  B : Set up S3 replication between the production S3 bucket and the development S3 bucket. Activate Amazon Macie on the development S3 bucket. Create an AWS Step Functions state machine to initiate a discovery job and redact all PII as the files are copied to the development S3 bucket. Give the state machine tasks encrypt and decrypt permissions on the KMS key in the development account.
  
  C : Set up an S3 Batch Operations job to copy files from the production S3 bucket to the development S3 bucket. In the development account, configure an AWS Lambda function to redact ail PII. Configure S3 Object Lambda to use the Lambda function for S3 GET requests. Give the Lambda function-s IAM role encrypt and decrypt permissions on the KMS key in the development account.
  
  D : Create a development environment from the CloudFormation template in the development account. Schedule an Amazon EventBridge rule to start the AWS Step Functions state machine once a week.
  
  E : Create a development environment from the CloudFormation template in the development account. Schedule a cron job on an Amazon EC2 instance to run once a week to start the S3 Batch Operations job.
  
  Answer: A,D
Question 5
- A company runs an Amazon EKS cluster and must implement comprehensive logging for the control plane and nodes. The company must analyze API requests and monitor container performance. Which solution will meet these requirements with the LEAST operational overhead?
  A : Enable AWS CloudTrail for control plane logging and deploy Logstash on nodes.
  
  B : Enable control plane logging to CloudWatch and use CloudWatch Container Insights for node and pod metrics.
  
  C : Enable API server logging to S3 and deploy Kubernetes Event Exporter to nodes.
  
  D : Use AWS Distro for OpenTelemetry and stream logs to Amazon Redshift.
  
  Answer: B

Free Amazon DOP-C02 Exam Questions

Absolute Free DOP-C02 Exam Practice for Comprehensive Preparation