Multiple Choice
An application running on Amazon EC2 opens connections to an Amazon RDS SQL Server database. The developer does not want to store the user name and password for the database in the code. The developer would also like to automatically rotate the credentials. What is the MOST secure way to store and access the database credentials?
A) Create an IAM role that has permissions to access the database. Attach the role to the EC2 instance.
B) Use AWS Secrets Manager to store the credentials. Retrieve the credentials from Secrets Manager as needed.
C) Store the credentials in an encrypted text file in an Amazon S3 bucket. Configure the EC2 instance's user data to download the credentials from Amazon S3 as the instance boots.
D) Store the user name and password credentials directly in the source code. No further action is needed because the source code is stored in a private repository.
Correct Answer:
Verified
Correct Answer:
Verified
Q226: How can you secure data at rest
Q227: An application ingests a large number of
Q228: The upload of a 15 GB object
Q229: A company has three different environments: Development,
Q230: A static website is hosted in an
Q232: A developer has written a multi-threaded application
Q233: A developer needs to manage AWS infrastructure
Q234: A Developer has created an S3 bucket
Q235: An application running on EC2 instances is
Q236: A Developer is writing a serverless application