A company has an application that runs on Amazon EC2 instances and uses an Amazon Aurora database. The EC2 instances connect to the database by using user names and passwords that are stored locally in a file. The company wants to minimize the operational overhead of credential management.
What should a solutions architect do to accomplish this goal?
A . Use AWS Secrets Manager. Turn on automatic rotation.
B . Use AWS Systems Manager Parameter Store. Turn on automatic rotation.
C . Create an Amazon S3 bucket lo store objects that are encrypted with an AWS Key
D . Management Service (AWS KMS) encryption key. Migrate the credential file to the S3 bucket. Point the application to the S3 bucket.
E . Create an encrypted Amazon Elastic Block Store (Amazon EBS) volume (or each EC2 instance.
Attach the new EBS volume to each EC2 instance. Migrate the credential file to the new EBS volume.
Point the application to the new EBS volume.
Answer: A
Explanation:
https://aws.amazon.com/cn/blogs/security/how-to-connect-to-aws-secrets-manager-service-within-a-virtual-private-cloud/
https://aws.amazon.com/blogs/security/rotate-amazon-rds-database-credentials-automatically-with-aws-secrets-manager/
Latest SAA-C03 Dumps Valid Version with 400 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund