Multiple Choice
A security team needs to enforce the rotation of all IAM users' access keys every 90 days. If an access key is found to be older, the key must be made inactive and removed. A solutions architect must create a solution that will check for and remediate any keys older than 90 days. Which solution meets these requirements with the LEAST operational effort?
A) Create an AWS Config rule to check for the key age. Configure the AWS Config rule to run an AWS Batch job to remove the key.
B) Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age. Configure the rule to run an AWS Batch job to remove the key.
C) Create an AWS Config rule to check for the key age. Define an Amazon EventBridge (Amazon CloudWatch Events) rule to schedule an AWS Lambda function to remove the key.
D) Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age. Define an EventBridge (CloudWatch Events) rule to run an AWS Batch job to remove the key.
Correct Answer:
Verified
Correct Answer:
Verified
Q504: A business application is hosted on Amazon
Q505: A company wants to use a custom
Q506: A company wants to migrate its accounting
Q507: A company is hosting multiple websites for
Q508: A company has migrated an on-premises Oracle
Q510: A solutions architect is redesigning a monolithic
Q511: A company is developing a real-time multiplier
Q512: A company has on-premises servers running a
Q513: A company is deploying a multi-instance application
Q514: A company recently released a new type