ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Data Analytics - Specialty All Questions

View all questions & answers for the AWS Certified Data Analytics - Specialty exam
Go to Exam

Exam AWS Certified Data Analytics - Specialty topic 1 question 163 discussion

Exam question from Amazon's AWS Certified Data Analytics - Specialty
Question #: 163
Topic #: 1
[All AWS Certified Data Analytics - Specialty Questions]

A banking company is currently using Amazon Redshift for sensitive data. An audit found that the current cluster is unencrypted. Compliance requires that a database with sensitive data must be encrypted using a hardware security module (HSM) with customer managed keys.
Which modifications are required in the cluster to ensure compliance?

  • A. Create a new HSM-encrypted Amazon Redshift cluster and migrate the data to the new cluster.
  • B. Modify the DB parameter group with the appropriate encryption settings and then restart the cluster.
  • C. Enable HSM encryption in Amazon Redshift using the command line.
  • D. Modify the Amazon Redshift cluster from the console and enable encryption using the HSM option.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by rb39 at April 21, 2022, 9:55 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
minhld
Highly Voted 2 years, 4 months ago
Selected Answer: A
To migrate an unencrypted cluster to a cluster encrypted using a hardware security module (HSM), you create a new encrypted cluster and move your data to the new cluster. You can't migrate to an HSM-encrypted cluster by modifying the cluster. https://docs.aws.amazon.com/redshift/latest/mgmt/changing-cluster-encryption.html
upvoted 9 times
...
pk349
Most Recent 2 years ago
A: I passed the test
upvoted 2 times
...
nadavw
2 years, 4 months ago
Selected Answer: A
You can't enable hardware security module (HSM) encryption by modifying the cluster. Instead, create a new, HSM-encrypted cluster and migrate your data to the new cluster. https://docs.aws.amazon.com/redshift/latest/mgmt/changing-cluster-encryption.html
upvoted 3 times
...
rocky48
2 years, 9 months ago
Selected Answer: A
Answer-A
upvoted 1 times
...
jrheen
3 years ago
Answer-A
upvoted 1 times
...
astalavista1
3 years ago
Selected Answer: A
A - New Cluster needs to be created as Encryption only available during Cluster creation.
upvoted 3 times
...
rb39
3 years ago
Selected Answer: A
Encryption can only be enabled when creating the cluster
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago