Multiple Choice
A development team stores its Amazon RDS MySQL DB instance user name and password credentials in a configuration file. The configuration file is stored as plaintext on the root device volume of the team's Amazon EC2 instance. When the team's application needs to reach the database, it reads the file and loads the credentials into the code. The team has modified the permissions of the configuration file so that only the application can read its content. A solution architect must design a more secure solution. What should the solutions architect do to meet this requirement?
A) Store the configuration file in Amazon S3. Grant the application access to read the configuration file.
B) Create an IAM role with permission to access the database. Attach this IAM role to the EC2 instance.
C) Enable SSL connections on the database instance. Alter the database user to require SSL when logging in.
D) Move the configuration file to an EC2 instance store, and create an Amazon Machine Image (AMI) of the instance. Launch new instances from this AMI.
Correct Answer:
Verified
Correct Answer:
Verified
Q87: A company stores call recordings on a
Q88: A company built an application that lets
Q89: A company built a food ordering application
Q90: A solutions architect has created two IAM
Q91: A company's application is running on Amazon
Q93: A company's web application is running on
Q94: A company is hosting a web application
Q95: An application uses an Amazon RDS MySQL
Q96: A company is preparing to launch a
Q97: A company is moving its on-premises Oracle