Copyright (c) 2026 MindMesh Academy. All rights reserved. This content is proprietary and may not be reproduced or distributed without permission.

4.3.2. Sample Questions - Domain 2: Configuration Management & IaC

Question 1:

A DevOps engineer needs to provision a complex, reusable set of AWS resources. The team prefers to define infrastructure using familiar programming languages like Python or TypeScript to leverage existing code libraries and apply object-oriented principles. Which AWS Infrastructure as Code (IaC) tool is best suited for this requirement?

A) AWS CloudFormation B) AWS Cloud Development Kit (CDK) C) AWS Serverless Application Model (SAM) D) AWS OpsWorks

Correct Answer: B
Explanation:
  • B) AWS Cloud Development Kit (CDK): The AWS Cloud Development Kit (CDK) is an open-source framework that allows developers to define cloud resources using familiar programming languages such as Python, TypeScript, Java, .NET, and Go. This enables the application of object-oriented principles, leveraging existing code libraries, and building complex, reusable constructs. CDK then synthesizes these definitions into CloudFormation templates for deployment, combining the flexibility of programming languages with the robustness of CloudFormation.
Question 2:

A development team is adopting Infrastructure as Code (IaC) for their AWS environment. They want to ensure that all infrastructure changes are controlled, auditable, and predictable, minimizing the risk of configuration drift and unintended consequences. Which of the following practices is MOST crucial for achieving these goals in an IaC environment?

A) Implementing manual approval gates for all infrastructure deployments. B) Storing IaC templates in a shared network drive for easy access. C) Mandating the use of Version Control Systems (VCS) and Pull Requests (PRs) for all IaC changes. D) Performing ad-hoc infrastructure updates directly in the AWS Management Console.

Correct Answer: C
Explanation:
  • C) Mandating the use of Version Control Systems (VCS) and Pull Requests (PRs) for all IaC changes: Mandating the use of Version Control Systems (VCS) like Git and requiring Pull Requests (PRs) for all IaC changes is the MOST crucial practice. VCS provides a complete history of all infrastructure code changes, enabling auditing, tracking who made what changes, and facilitating easy rollbacks. PRs enforce peer review, ensuring correctness, adherence to standards, and preventing unintended consequences before changes are merged and deployed. This aligns with the First Principle of treating infrastructure as code, enabling automated, consistent, and repeatable provisioning and management.
Alvin Varughese
Written byAlvin Varughese•Founder•15 professional certifications