ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 271 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 271
Topic #: 1
[All AWS Certified Security - Specialty Questions]

A company needs its Amazon Elastic Block Store (Amazon EBS) volumes to be encrypted at all times. During a security incident, EBS snapshots of suspicious instances are shared to a forensics account for analysis. A security engineer attempting to share a suspicious EBS snapshot to the forensics account receives the following error:
`Unable to share snapshot. An error occurred (OperationNotPermitted) when calling the ModifySnapshotAttribute operation: Encrypted snapshots with EBS default key cannot be shared`
Which combination of steps should the security engineer take in the incident account to complete the sharing operation? (Choose three.)

  • A. Create a customer managed CMK. Copy the EBS snapshot encrypting the destination snapshot using the new CMK.
  • B. Allow forensics accounting principals to use the CMK by modifying its policy.
  • C. Create an Amazon EC2 instance. Attach the encrypted and suspicious EBS volume. Copy data from the suspicious volume to an unencrypted volume. Snapshot the unencrypted volume.
  • D. Copy the EBS snapshot to the new decrypted snapshot.
  • E. Restore a volume from the suspicious EBS snapshot. Create an unencrypted EBS volume of the same size.
  • F. Share the target EBS snapshot with the forensics account.
Show Suggested Answer Hide Answer
Suggested Answer: ABF 🗳️
by stamford at Aug. 25, 2021, 10:16 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
hk436
Highly Voted 3 years, 8 months ago
A,B,F is my answer.!
upvoted 13 times
...
TollaMS
Highly Voted 3 years, 8 months ago
A B F Add the target account to a custom (non-default) KMS key. Copy the snapshot using the customer managed key, and then share the snapshot with the target account. Copy the shared DB snapshot from the target account.
upvoted 6 times
kujin
2 years, 4 months ago
https://help.skeddly.com/en/articles/4968401-encrypted-snapshots-with-ebs-default-key-cannot-be-shared
upvoted 1 times
...
...
Raphaello
Most Recent 1 year, 4 months ago
Selected Answer: ABF
Correct answers are ABF.
upvoted 1 times
...
kiwi123
2 years, 4 months ago
How could the suggested answers to be 100% wrong..
upvoted 2 times
...
D2
2 years, 7 months ago
Selected Answer: ABF
Answer ABF
upvoted 1 times
...
dcasabona
2 years, 11 months ago
Selected Answer: ABF
A, B, F as well.
upvoted 1 times
...
sapien45
2 years, 11 months ago
Selected Answer: ABF
The others answers gave me headaches
upvoted 1 times
...
MoreOps
3 years, 3 months ago
Selected Answer: ABF
ABF is my choice
upvoted 1 times
...
ceros399
3 years, 3 months ago
Selected Answer: ABF
ABF - only possible answers
upvoted 1 times
...
mx677
3 years, 4 months ago
Selected Answer: ABF
share a snapshot across AWS accounts by modifying its access permissions
upvoted 1 times
...
Radhaghosh
3 years, 5 months ago
A,B,F is my answer You can decrypt any encrypted EBS
upvoted 1 times
...
roger8978
3 years, 6 months ago
A B F. Tried and tested.
upvoted 2 times
...
VeeraB
3 years, 8 months ago
A,B,F https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/EBSSnapshots.html#copy-and-share
upvoted 3 times
...
Igloo
3 years, 8 months ago
Answer A B F Why? Matches the steps detailed in the AWS doc on sharing an EBS Snapshot https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ebs-modifying-snapshot-permissions.html
upvoted 3 times
...
khin
3 years, 9 months ago
A,B,F should be correct
upvoted 4 times
...
stamford
3 years, 9 months ago
is it A, B and F?
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel