Topic 1 Question 53
A compliance team requires all administrator passwords for Amazon RDS DB instances to be changed at least annually. Which solution meets this requirement in the MOST operationally efficient manner?
Store the database credentials in AWS Secrets Manager. Configure automatic rotation for the secret every 365 days.
Store the database credentials as a parameter in the RDS parameter group. Create a database trigger to rotate the password every 365 days.
Store the database credentials in a private Amazon S3 bucket. Schedule an AWS Lambda function to generate a new set of credentials every 365 days.
Store the database credentials in AWS Systems Manager Parameter Store as a secure string parameter. Configure automatic rotation for the parameter every 365 days.
ユーザの投票
コメント(6)
- 正解だと思う選択肢: A
A is correct. We can confirm here https://docs.aws.amazon.com/secretsmanager/latest/userguide/rotating-secrets.html
👍 3kati2k22cz2022/09/03 - 正解だと思う選択肢: A
aaaaaaaaa
👍 2michaldavid2022/12/08 - 正解だと思う選択肢: A
To implement password rotation lifecycles, use AWS Secrets Manager. You can rotate, manage, and retrieve database credentials, API keys, and other secrets throughout their lifecycle using Secrets Manager. For more information, see What is AWS Secrets Manager? in the AWS Secrets Manager User Guide.
👍 2FKZ2023/03/02
シャッフルモード