Topic 1 Question 115
A company needs to follow security best practices to deploy resources from an AWS CloudFormation template. The CloudFormation template must be able to configure sensitive database credentials.
The company already uses AWS Key Management Service (AWS KMS) and AWS Secrets Manager.
Which solution will meet the requirements?
Use a dynamic reference in the CloudFormation template to reference the database credentials in Secrets Manager.
Use a parameter in the CloudFormation template to reference the database credentials. Encrypt the CloudFormation template by using AWS KMS.
Use a SecureString parameter in the CloudFormation template to reference the database credentials in Secrets Manager.
Use a SecureString parameter in the CloudFormation template to reference an encrypted value in AWS KMS.
ユーザの投票
コメント(8)
Since this is the last question here so maybe I can post it here. I've passed this exam with a score of 926. Only few of the questions were not from this exam material but else, everything came from here. Would like to thanks to all of you who helped in answering my queries and got my concept clarified!... Man_Kind, Agboola and others, you guys simply rock, thanks once again so much! :)
👍 17Aamee2024/06/13I took the exam on 13 Feb 2024. Around 25 questions came from here. The rest I answered by myself. If you are an experienced AWS Professional, you won't find it difficult to pass the exam. If you are a novice, then wait for the exam topics to update the question bank. The 121 questions aren't enough. All the best, and thanks everyone for contributing to the discussion.
👍 6saptati2024/09/13- 正解だと思う選択肢: A👍 4[Removed]2024/05/25
シャッフルモード