Text preview & study summary

AWS SOA-C02 DVA-C02 DOP-C02 - SysOps Developer DevOps - Operations Development CICD CloudFormation

A free sample of 5 questions from this quiz, shown in full with answer choices and explanations. No interactivity — everything is visible on this page for study and review.

Want to test your knowledge? Launch the Interactive Exam Simulator

Question 1

An application deployed with CodeDeploy on EC2 instances (in-place deployment) experiences a deployment failure. The engineer wants to see which specific lifecycle hook failed. Where should they look?

Answer choices

  • A. CloudTrail API logs

  • B. CodeDeploy deployment event logs and `/var/log/aws/codedeploy-agent/codedeploy-agent.log` on the instance (Correct)

  • C. CloudWatch Application Insights

  • D. EC2 Instance Console Output

Explanation

CodeDeploy deployment lifecycle: ApplicationStop → BeforeInstall → AfterInstall → ApplicationStart → ValidateService. When a deployment fails, CodeDeploy shows the failed lifecycle hook in the deployment detail view in the console. For detailed debugging, the CodeDeploy agent log on the EC2 instance (`/var/log/aws/codedeploy-agent/`) shows exactly what commands ran and their output. CloudTrail shows API calls. CloudWatch Application Insights provides application health insights. EC2 console output shows boot-level messages, not deployment logs.

Question 2

A DevOps engineer uses AWS CodeDeploy to deploy a new Lambda function version. The deployment must shift 10% of traffic to the new version immediately, then the remaining 90% after 10 minutes, allowing automatic rollback if CloudWatch alarms fire. Which CodeDeploy deployment configuration achieves this?

Answer choices

  • A. AllAtOnce deployment

  • B. Linear10PercentEvery10Minutes

  • C. Canary10Percent10Minutes (Correct)

  • D. Blue/Green with manual traffic shift

Explanation

CodeDeploy for Lambda deployment configurations: Canary — shifts a percentage of traffic to the new version initially, waits a specified period, then shifts the remainder. `Canary10Percent10Minutes`: 10% immediately → wait 10 minutes → 100%. If CloudWatch alarms configured in the deployment group fire during the canary period, CodeDeploy automatically rolls back. `Linear10PercentEvery10Minutes` shifts traffic in equal increments (10% every 10 minutes). `AllAtOnce` deploys to all traffic immediately. Canary matches the exact requirement.

Question 3

A developer calls the Lambda `Invoke` API with `InvocationType: Event`. What happens if the Lambda function throws an error?

Answer choices

  • A. The calling application receives the error immediately

  • B. The event is placed back in the SQS queue for retry

  • C. Lambda retries asynchronously up to 2 times; failed events are sent to a configured DLQ or Lambda destination (Correct)

  • D. Lambda immediately rolls back all state changes

Explanation

Lambda asynchronous invocation (`InvocationType: Event`): Lambda queues the event and returns HTTP 202 Accepted immediately (caller doesn't wait). If the function errors, Lambda retries up to 2 times with delays. If all retries fail, the event is sent to: a Dead Letter Queue (SQS or SNS) if configured, or a Lambda Destination (Success/Failure). The caller never sees the function error directly. This is different from synchronous invocation (`RequestResponse`) where errors propagate to the caller. AWS services like S3 and SNS invoke Lambda asynchronously.

Question 4

A SysOps engineer needs to receive notifications when any EC2 instance's CPU utilization exceeds 85% for more than 5 consecutive minutes. Which AWS services enable this?

Answer choices

  • A. AWS Config rule with SNS notification

  • B. CloudWatch Alarm with SNS topic subscription (Correct)

  • C. CloudTrail log filter with Lambda

  • D. EventBridge scheduled rule

Explanation

CloudWatch Alarms monitor CloudWatch metrics (EC2 CPUUtilization) and trigger when thresholds are breached for a specified period (5-minute evaluation period). Actions include: SNS topic notification (emails, SMS, Lambda), Auto Scaling actions, EC2 actions (stop/terminate/reboot). Configure: metric=CPUUtilization, threshold=85%, evaluation periods=1, period=300s. SNS delivers notifications to subscribers (email, SMS, Lambda, SQS). AWS Config monitors resource configurations (compliance), not performance metrics. CloudTrail captures API calls. EventBridge handles event routing and scheduling.

Question 5

A SysOps engineer needs to automatically remediate non-compliant EC2 instances (e.g., instances without approved AMIs). Which AWS service combination enables automated detection and remediation?

Answer choices

  • A. CloudTrail + Lambda

  • B. AWS Config Rules + Systems Manager Automation documents (Correct)

  • C. CloudWatch Alarms + EC2 Auto Scaling

  • D. AWS Trusted Advisor + AWS Support

Explanation

AWS Config Rules evaluate resource configurations against defined compliance rules (custom or managed rules). When a non-compliant resource is detected (e.g., EC2 using an unapproved AMI), Config can trigger an automatic remediation action using AWS Systems Manager Automation documents. For example: stop the non-compliant instance, create a ticket in ServiceNow, or trigger an AMI replacement workflow. CloudTrail captures API calls for auditing. CloudWatch + Auto Scaling handles compute scaling. Trusted Advisor provides recommendations but no automated remediation.