○Store the password in AWS CloudHSM. Associate the Lambda function with a rolethat can use the key ID to retrieve the password from CloudHSM. Use CloudHSM toautomatically rotate the password.●Store the password in AWS Secrets Manager. Associate the Lambda function witha role that can use the secret ID to retrieve the password from Secrets Manager. UseSecrets Manager to automatically rotate the password.○Store the password in AWS Key Management Service (AWS KMS). Associate theLambda function with a role that can use the key ID to retrieve the password from AWSKMS. Use AWS KMS to automatically rotate the uploaded password.○Move the database password to an environment variable that is associated withthe Lambda function. Retrieve the password from the environment variable by invokingthe function. Create a deployment script to automatically rotate the password.Explanation/ReferenceReference:-credentials-amazon-rds-database-types-oracle/Question 79A company is managing health records on-premises. The company must keep these recordsindefinitely, disable any modifications to the records once they are stored, and granularlyaudit access at all levels. The chief technology officer (CTO) is concerned because there arealready millions of records not being used by any application, and the current infrastructure isrunning out of space. The CTO has requested a solutions architect design a solution to moveexisting data and support future records.Which services can the solutions architect recommend to meet these requirements?●Use AWS DataSync to move existing data to AWS. Use Amazon S3 to storeexisting and new data. Enable Amazon S3 object lock and enable AWS CloudTrail withdata events.○Use AWS Storage Gateway to move existing data to AWS. Use Amazon S3 to storeexisting and new data. Enable Amazon S3 object lock and enable AWS CloudTrail withmanagement events.○Use AWS DataSync to move existing data to AWS. Use Amazon S3 to storeexisting and new data. Enable Amazon S3 object lock and enable AWS CloudTrail withmanagement events.○Use AWS Storage Gateway to move existing data to AWS. Use Amazon ElasticBlock Store (Amazon EBS) to store existing and new data. Enable Amazon S3 object lockand enable Amazon S3 server access logging.
Question 80A company wants to use Amazon S3 for the secondary copy of its on-premises dataset. Thecompany would rarely need to access this copy. The storage solution's cost should beminimal.Which storage solution meets these requirements?○S3 Standard○S3 Intelligent-Tiering○S3 Standard-Infrequent Access (S3 Standard-IA)●S3 One Zone-Infrequent Access (S3 One Zone-IA)Question 81A company's operations team has an existing Amazon S3 bucket configured to notify anAmazon SQS queue when new objects are created within the bucket. The development teamalso wants to receive events when new objects are created. The existing operations teamworkflow must remain intact.
Upload your study docs or become a
Course Hero member to access this document
Upload your study docs or become a
Course Hero member to access this document
End of preview. Want to read all 253 pages?
Upload your study docs or become a
Course Hero member to access this document
Term
Fall
Professor
RalphDeters
Tags
Amazon Elastic Compute Cloud
