Multiple Choice
A company is developing an application that will run on several Amazon EC2 instances in an Auto Scaling group and can access a database running on Amazon EC2. The application needs to store secrets required to connect to the database. The application must allow for periodic secret rotation, and there should be no changes to the application when a secret changes. What is the SAFEST way to meet these requirements?
A) Associate an IAM role to the EC2 instance where the application is running with permission to access the database.
B) Use AWS Systems Manager Parameter Store with the SecureString data type to store secrets. Use AWS Systems Manager Parameter Store with the SecureString data type to store secrets.
C) Configure the application to store secrets in Amazon S3 object metadata.
D) Hard code the database secrets in the application code itself.
Correct Answer:
Verified
Correct Answer:
Verified
Q423: A developer is troubleshooting the permissions of
Q424: A Developer is creating a serverless website
Q425: The development team is working on an
Q426: A company uses Amazon DynamoDB for managing
Q427: A Developer is receiving HTTP 400: ThrottlingException
Q429: An application development team decides to use
Q430: A developer is designing a distributed application
Q431: A developer is building an AWS Lambda
Q432: What does an Amazon SQS delay queue
Q433: A Developer created a new AWS account