Exam: DP-203: Azure Data Engineer Associate

Review questions, reveal answers, and move through the exam one card at a time.

Total Questions: 143

Questions per page

Page 1 of 1

Which of the following operational controls do users completely inherit from AWS as part of the
AWS shared responsibility model?
A. Security management of data center
B. Patch management
C. Configuration management
D. User and access management

Answer: A
✅ Explanation:
-In the AWS Shared Responsibility Model, the responsibilities are divided between AWS and the customer:
-AWS is responsible for the "security of the cloud", which includes:
-Physical security of data centers
-Hardware, networking, and facilities
-Global infrastructure
-Customers are responsible for the "security in the cloud", which includes:
Data protection
Patch management (for OS, applications, etc.)
Configuration management of their resources
-User and access management (IAM, permissions, MFA, etc.)

Permissions for which of the following are managed by service control policies (SCPs)?
A. Availability Zones
B. AWS Regions
C. AWS Organizations
D. Edge locations

Answer: C
✅ Explanation:
-Service Control Policies (SCPs) are a feature of AWS Organizations. SCPs are used to manage permissions for accounts within an AWS Organization. They define the maximum available permissions for member accounts in the organization.
-SCPs do not grant permissions by themselves but restrict permissions that can be delegated to IAM users and roles within accounts.
-They apply to organizational units (OUs) or individual accounts.

What is raised when a business deploys web servers across several AWS Regions?
A. Coupling
B. Availability
C. Security
D. Durability

Answer: B
✅ Explanation:
When a business deploys web servers across multiple AWS Regions, the primary goal is usually to increase availability and fault tolerance. By distributing resources across different geographic regions, the system can continue to serve users even if one region experiences an outage.

When using AWS Lambda, what is the customer's responsibility?
A. Operating system configuration
B. Application management
C. Platform management
D. Code encryption

Answer: D
✅ Explanation:
-With AWS Lambda, AWS manages the underlying infrastructure, including servers, operating system, and platform. This is part of the AWS Shared Responsibility Model where AWS takes care of the "security of the cloud".
-However, the customer is responsible for:
-Writing, updating, and managing the application code (functions)
-Application logic and business rules
-Managing function triggers and integrations

What attributes of an AWS account can AWS Trusted Advisor monitor and advise on? (Select
two.)
A. Compliance with security best practices
B. Application performance
C. Network utilization
D. Cost optimization
E. Compliance status

Answer: BD
✅ Explanation:
-AWS Trusted Advisor is a service that analyzes your AWS environment and provides recommendations to help you follow AWS best practices in these areas:
Cost Optimization
Performance
Security
Fault Tolerance
Service Limits

Which AWS services and/or features increase availability and mitigate the effect of failures while
constructing a typical three-tier web application? (Select two.)
A. AWS Auto Scaling for Amazon EC2 instances
B. Amazon VPC subnet ACLs to check the health of a service
C. Distributed resources across multiple Availability Zones
D. AWS Server Migration Service (AWS SMS) to move Amazon EC2 instances into a
different Region
E. Distributed resources across multiple AWS points of presence

Answer: AC
✅ Explanation:
-When designing a three-tier web application (Presentation, Application, Database), increasing availability and mitigating failures are key goals. Here's how each option fits:
-Breakdown of options:
A. AWS Auto Scaling for Amazon EC2 instances Auto Scaling adjusts capacity automatically based on demand or health, ensuring availability and handling failures. ✅
B. Amazon VPC subnet ACLs to check the health of a service NACLs are security filters; they don’t do health checks or impact availability/failover strategies. ❌
C. Distributed resources across multiple Availability Zones Spreading resources across AZs ensures high availability and fault tolerance. ✅
D. AWS Server Migration Service (AWS SMS) to move Amazon EC2 instances into a different Region AWS SMS is for migrating workloads, not for active failover/high availability during runtime. ❌
E. Distributed resources across multiple AWS points of presence Points of presence refer to CloudFront edge locations (for CDN), not core to a typical 3-tier app's availability design. ❌

Which of the following IT responsibilities may AWS relieve a company's IT team of? (Select two.)
A. Patching database software
B. Storage capacity planning
C. Creating database schemas
D. Setting up access controls for data
E. Writing application code

Answer: AC
✅ Explanation:
Under the AWS Shared Responsibility Model, AWS takes care of managing the underlying infrastructure, so IT teams can focus on their applications and data.
✅ A. Patching database software
For managed services like Amazon RDS or Aurora, AWS handles patching the underlying database software and OS.
This relieves IT teams from manually patching the DB engines.
✅ B. Storage capacity planning
Services like Amazon S3 or EBS scale automatically.
-You don't need to pre-provision or plan physical storage capacity in advance.
-AWS abstracts the underlying storage management.
❌ C. Creating database schemas
This is an application-level task that only the customer can define based on their data models and business logic.
❌ D. Setting up access controls for data
AWS provides the tools (like IAM, policies, KMS), but it's the customer’s responsibility to configure access controls correctly.
❌ E. Writing application code
AWS does not write application code. That’s 100% the customer’s responsibility.

Which of the following tasks may be used to improve Amazon EC2 costs? (Select two.)
A. Implementing Auto Scaling groups to add and remove instances based on demand.
B. Creating a policy to restrict IAM users from creating new instances.
C. Setting a budget to limit spending on EC2 instances using AWS Budgets.
D. Purchasing Reserved Instances.
E. Adding EC2 instances to a second AWS Region that is geographically close to the end
users.

Answer: BC
✅ Explanation:
Both of these actions are directly related to reducing or optimizing Amazon EC2 costs:
✅ A. Implementing Auto Scaling groups to add and remove instances based on demand
Auto Scaling ensures you only run the necessary number of instances based on actual demand.
-This avoids overprovisioning, saving costs during low usage periods.
✅ D. Purchasing Reserved Instances
Reserved Instances (RIs) offer significant discounts (up to 75%) compared to On-Demand pricing.
-Ideal for predictable workloads with steady-state usage.
-Why the others are incorrect:
B. Creating a policy to restrict IAM users from creating new instances This is more of a security/governance measure, not a cost optimization strategy by itself. ❌
C. Setting a budget to limit spending on EC2 instances using AWS Budgets AWS Budgets helps track and alert for spending but doesn't reduce costs or optimize usage by itself. ❌
E. Adding EC2 instances to a second AWS Region close to end users This might improve performance but doesn't necessarily reduce costs. In fact, it could increase costs due to duplication of resources. ❌

Which of the following is the customer's obligation under the AWS shared responsibility model?
A. Patching guest OS and applications
B. Patching and fixing flaws in the infrastructure
C. Physical and environmental controls
D. Configuration of AWS infrastructure devices

Answer: A
✅ Explanation:
-Under the AWS Shared Responsibility Model:
-AWS is responsible for the security of the cloud (hardware, software, networking, facilities, infrastructure).
-Customers are responsible for the security in the cloud (how they configure services, patch OS/applications, manage data, etc.).
-Breakdown of options:
A. Patching guest OS and applications This is the customer's responsibility for services like Amazon EC2, where you manage your own OS and applications. ✅
B. Patching and fixing flaws in the infrastructure AWS handles infrastructure-level patching (hosts, networking, physical servers). ❌
C. Physical and environmental controls AWS is responsible for physical security of its data centers. ❌
D. Configuration of AWS infrastructure devices AWS manages infrastructure devices (switches, routers, hardware). ❌

Which AWS serverless platform services are included?
A. Amazon EC2, Amazon S3, Amazon Athena
B. Amazon Kinesis, Amazon SQS, Amazon EMR
C. AWS Step Functions, Amazon DynamoDB, Amazon SNS
D. Amazon Athena, Amazon Cognito, Amazon EC2

Answer: C
✅ Explanation:
-AWS serverless platform services are those where you don't have to manage servers. These include services like:
-WS Step Functions (serverless orchestration)
Amazon DynamoDB (serverless NoSQL database)
Amazon SNS (serverless pub/sub messaging service)
-Other options mention services that are not fully serverless or require server management, like Amazon EC2 and Amazon EMR.

Back Next Question