ExamGecko
Question list
Search
Search

List of questions

Search

Related questions











Question 175 - DVA-C01 discussion

Report
Export

A Developer uses AWS CodeDeploy to automate application deployment that connects to an external MySQL database. The Developer wants to securely access the encrypted secrets, such as API keys and database passwords. Which of the following solutions would involve the LEAST administrative effort?

A.
Save the secrets in Amazon S3 with AWS KMS server-side encryption, and use a signed URL to access them by using the IAM role from Amazon EC2 instances.
Answers
A.
Save the secrets in Amazon S3 with AWS KMS server-side encryption, and use a signed URL to access them by using the IAM role from Amazon EC2 instances.
B.
Use the instance metadata to store the secrets and to programmatically access the secrets from EC2 instances.
Answers
B.
Use the instance metadata to store the secrets and to programmatically access the secrets from EC2 instances.
C.
Use the Amazon DynamoDB client-side encryption library to save the secrets in DynamoDB and to programmatically access the secrets from EC2 instances.
Answers
C.
Use the Amazon DynamoDB client-side encryption library to save the secrets in DynamoDB and to programmatically access the secrets from EC2 instances.
D.
Use AWS SSM Parameter Store to store the secrets and to programmatically access them by using the IAM role from EC2 instances.
Answers
D.
Use AWS SSM Parameter Store to store the secrets and to programmatically access them by using the IAM role from EC2 instances.
Suggested answer: D

Explanation:

https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-parameterstore.html

asked 16/09/2024
Joseph Lewis
46 questions
User
Your answer:
0 comments
Sorted by

Leave a comment first