Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Amazon
  5. AWS DevOps Engineer Professional

Amazon AWS DevOps Engineer Professional Exam
AWS DevOps Engineer - Professional (DOP-C01) (Page 7 )

Updated On: 19-Jan-2026
Page 7 of 43
PDF with 208 Questions

A company has microservices running in AWS Lambda that read data from Amazon DynamoDB. The Lambda code is manually deployed by developers after successful testing. The company now needs the tests and deployments be automated and run in the cloud. Additionally, tra c to the new versions of each microservice should be incrementally shifted over time after deployment.

What solution meets all the requirements, ensuring the MOST developer velocity?

  1. Create an AWS CodePipeline con guration and set up a post-commit hook to trigger the pipeline after tests have passed. Use AWS CodeDeploy and create a Canary deployment con guration that speci es the percentage of tra c and interval.
  2. Create an AWS CodeBuild con guration that triggers when the test code is pushed. Use AWS CloudFormation to trigger an AWS CodePipeline con guration that deploys the new Lambda versions and speci es the tra c shift percentage and interval.
  3. Create an AWS CodePipeline con guration and set up the source code step to trigger when code is pushed. Set up the build step to use AWS CodeBuild to run the tests. Set up an AWS CodeDeploy con guration to deploy, then select the CodeDeployDefault.LambdaLinea10PercentEvery3Minutes option.
  4. Use the AWS CLI to set up a post-commit hook that uploads the code to an Amazon S3 bucket after tests have passed. Set up an S3 event trigger that runs a Lambda function that deploys the new version. Use an interval in the Lambda function to deploy the code over time at the required percentage.

Answer(s): C



A security team is concerned that a developer can unintentionally attach an Elastic IP address to an Amazon EC2 instance in production. No developer should be allowed to attach an Elastic IP address to an instance. The security team must be noti ed if any production server has an Elastic IP address at any time.

How can this task be automated?

  1. Use Amazon Athena to query AWS CloudTrail logs to check for any associate-address attempts. Create an AWS Lambda function to disassociate the Elastic IP address from the instance, and alert the security team.
  2. Attach an IAM policy to the developers' IAM group to deny associate-address permissions. Create a custom AWS Con g rule to check whether an Elastic IP address is associated with any instance tagged as production, and alert the security team.
  3. Ensure that all IAM groups associated with developers do not have associate-address permissions. Create a scheduled AWS Lambda function to check whether an Elastic IP address is associated with any instance tagged as production, and alert the security team if an instance has an Elastic IP address associated with it.
  4. Create an AWS Con g rule to check that all production instances have EC2 IAM roles that include deny associate-address permissions.
    Verify whether there is an Elastic IP address associated with any instance, and alert the security team if an instance has an Elastic IP address associated with it.

Answer(s): B



A company is testing a web application that runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an Auto Scaling group across multiple Availability Zones. The company uses a blue/green deployment process with immutable instances when deploying new software.

During testing, users are being automatically logged out of the application at random times. Testers also report that, when a new version of the application is deployed, all users are logged out. The development team needs a solution to ensure users remain logged in across scaling events and application deployments.

What is the MOST e cient way to ensure users remain logged in?

  1. Enable smart sessions on the load balancer and modify the application to check for an existing session.
  2. Enable session sharing on the load balancer and modify the application to read from the session store.
  3. Store user session information in an Amazon S3 bucket and modify the application to read session information from the bucket.
  4. Modify the application to store user session information in an Amazon ElastiCache cluster.

Answer(s): D



A DevOps engineer is troubleshooting deployments to a new application that runs on Amazon EC2 instances behind an Application Load Balancer. The instances run in an EC2 Auto Scaling group across multiple Availability Zones. Instances sometimes come online before they are ready, which is leading to increased error rates among users. The current health check con guration gives instances a 60-second grace period and considers instances healthy after two 200 response codes from /index.php, a page that may respond intermittently during the deployment process. The development team wants instances to come online as soon as possible.

Which strategy would address this issue?

  1. Increase the instance grace period from 60 seconds to 180 seconds, and the consecutive health check requirement from 2 to 3.
  2. Increase the instance grace period from 60 seconds to 120 seconds, and change the response code requirement from 200 to 204.
  3. Modify the deployment script to create a /health-check.php le when the deployment begins, then modify the health check path to point to that le.
  4. Modify the deployment script to create a /health-check.php le when all tasks are complete, then modify the health check path to point to that le.

Answer(s): D



A company has a single-page application that was developed in Angular. A DevOps engineer needs to automate deployments of the application to a website that the company hosts on Amazon S3. The solution must provide version control of the source code and must give developers the ability to perform peer review.

Which combination of steps will meet these requirements? (Choose three.)

  1. Create an AWS CodeCommit repository to store the source code. Create an AWS CodePipeline pipeline that has a source of the CodeCommit repository.
  2. Create an S3 bucket to act as the source for developers to upload their source code. Create an AWS CodePipeline pipeline that has the S3 bucket as the source.
  3. In the CodePipeline pipeline, con gure an AWS CodeBuild phase that compiles the source code and produces build artifacts.
  4. In the CodePipeline pipeline, con gure an AWS CodeDeploy phase that compiles the source code, produces build artifacts, and then deploys the website.
  5. In the CodePipeline pipeline, con gure an AWS AppCon g deploy action that deploys the build artifacts to the S3 website bucket.
  6. In the CodePipeline pipeline, con gure an S3 deploy action that deploys the build artifacts to the S3 website bucket.

Answer(s): A,C,F



Viewing page 7 of 43
Viewing questions 31 - 35 out of 208 questions



Post your Comments and Discuss Amazon AWS DevOps Engineer Professional exam prep with other Community members:

Join the AWS DevOps Engineer Professional Discussion