Configuration Management and IaC Questions
Practice questions for Configuration Management and IaC topic in AWS Certified DevOps Engineer - Professional. 37 questions covering this domain.
An administrator suspects someone changed resources directly in service consoles instead of updating the CloudFormation template. The team wants Cloud...
A patching team wants to check which managed nodes are missing updates before deciding whether to install anything. Which Patch Manager capability mee...
An operations lead needs to choose between State Manager and Maintenance Windows for recurring node changes. The requirement is to automate ongoing sy...
A role has an identity-based policy that allows IAM administration, but the same role also has a permissions boundary that allows only Amazon S3, Clou...
A platform administrator wants to let teams attach identity-based policies to roles but still enforce an upper limit on what those roles can ever do. ...
An organization wants the recommended way to configure recurring patching across all accounts in all Regions or only selected accounts and Regions fro...
A fleet operations team wants a secure, scalable configuration management service that keeps managed nodes and other AWS resources in a desired state ...
A global DevOps team wants to reduce latency when requesting temporary credentials but still use those credentials against resources worldwide. What s...
An engineering team must create, update, and delete the same CloudFormation stacks across multiple AWS accounts and Regions from one central account. ...
A fleet of managed nodes needs an inventory of installed applications, network configuration, and Windows updates collected centrally for queries. Whi...
A team wants a CloudFormation resource (an RDS database) to be retained when its stack is deleted. Which attribute should be set on that resource?
Which AWS Systems Manager Parameter Store parameter type encrypts the value with AWS KMS and decrypts on retrieval?
A CloudFormation template is becoming too large to maintain. The team wants to break it into reusable child templates referenced by a parent stack and...
A platform team must enforce policy as code on CloudFormation templates and stack operations to proactively block noncompliant resource configurations...
In AWS CDK, which construct level wraps L1 CloudFormation resources with sensible defaults and helper methods for common use cases?
Which CloudFormation template top-level section declares values that can be passed in at stack creation or update time?
A CloudFormation stack creates EC2 instances that must complete an internal bootstrap. The stack must wait for those instances to signal success befor...
A DevOps team wants to define a reusable, versioned procedure that AWS Systems Manager runs to perform multi-step operational tasks (start/stop instan...
A team uses CDK to provision infrastructure and wants to enforce a rule that every EC2 instance provisioned by CDK must have at least one tag. They wa...
Which CloudFormation section is used to map a top-level key such as an AWS Region to a nested value such as an AMI ID to avoid hard-coding per-Region ...
Sign in to see all 37 questions
Create a free account to browse all questions — completely free during our launch phase.