Topic 1 Question 320
A company's compliance audit reveals that some Amazon Elastic Block Store (Amazon EBS) volumes that were created in an AWS account were not encrypted. A solutions architect must implement a solution to encrypt all new EBS volumes at rest.
Which solution will meet this requirement with the LEAST effort?
Create an Amazon EventBridge rule to detect the creation of unencrypted EBS volumes. Invoke an AWS Lambda function to delete noncompliant volumes.
Use AWS Audit Manager with data encryption.
Create an AWS Config rule to detect the creation of a new EBS volume. Encrypt the volume by using AWS Systems Manager Automation.
Turn on EBS encryption by default in all AWS Regions.
ユーザの投票
コメント(7)
- 正解だと思う選択肢: D
The question states: ' A solutions architect must implement a solution to encrypt all new EBS volumes at rest' reference: https://repost.aws/knowledge-center/ebs-automatic-encryption
👍 3gonzales2023/10/29 - 正解だと思う選択肢: D
Least effort option
👍 3s612023/10/30 - 正解だと思う選択肢: D
"must implement a solution to encrypt all NEWWW EBS volumes at rest."
👍 3joleneinthebackyard2023/11/01
シャッフルモード