DOP-C02 Exam Dumps : AWS Certified DevOps Engineer - Professional

Comprehensive and Detailed Explanation From Exact Extract of DevOps Engineer documents only:

During an Amazon ECS service deployment, if tasks fail the Elastic Load Balancing target group health checks, Amazon ECS considers those tasks unhealthy and stops and replaces them. This behavior can cause the deployment to remain incomplete because healthy replacement tasks never become available.

Also, if an essential container in the task exits, the entire task stops. Since the question states that the new tasks enter a stopped state soon after launch, an essential container failure is a direct and highly likely cause.

Why the other options are incorrect:

B. The IAM role used by the DevOps engineer to update the ECS service does not need RunTask permission for the tasks to remain running after launch. A permission issue here would more likely affect the update action itself rather than cause launched tasks to stop shortly afterward.

C. Although CloudWatch Logs configuration problems can affect logging, the missing log group is not the most likely direct reason for ECS tasks to repeatedly stop in this deployment scenario.

D. The task role provides permissions to the application code running inside the container. It is not the role primarily responsible for launching the task. Task startup is typically related to the task execution role, ECS service behavior, container health, and load balancer checks.

The requirements demand very low data loss (RPO < 1 minute) and fast recovery (RTO < 10 minutes) across Regions . Snapshot/backup-based approaches (B, D) generally cannot meet an RPO under 1 minute (and restoring snapshots/backups typically pushes RTO higher than 10 minutes for many real-world DB sizes and restore times).

Option A is the only choice that is explicitly built around near-real-time replication to another Region (cross-Region replica) and an operational pattern to promote the standby and update Route 53 to redirect applications quickly during failover.

Multi-AZ addresses in-Region high availability , while the cross-Region replica + promotion addresses cross-Region DR with low RPO and acceptable RTO when automated.

Why the others don’t meet the stated RPO/RTO:

B : Copying snapshots every 5 minutes immediately violates RPO < 1 minute .

C : DMS replication could potentially be low-latency, but the option only mentions notifications (no automated failover/redirect) and does not provide the clearest/most direct managed HA+DR pattern for the required RTO < 10 minutes .

D : “Cross-Region backups every 30 seconds ” is not a standard practical backup cadence for AWS Backup with RDS, and restore-based DR still tends to miss the RTO/RPO targets compared with replica promotion.