ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C02 topic 1 question 623 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C02
Question #: 623
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C02 Questions]

To meet security requirements, a company needs to encrypt all of its application data in transit while communicating with an Amazon RDS MySQL DB instance. A recent security audit revealed that encryption at rest is enabled using AWS Key Management Service (AWS KMS), but data in transit is not enabled.
What should a solutions architect do to satisfy the security requirements?

  • A. Enable IAM database authentication on the database.
  • B. Provide self-signed certificates. Use the certificates in all connections to the RDS instance.
  • C. Take a snapshot of the RDS instance. Restore the snapshot to a new instance with encryption enabled.
  • D. Download AWS-provided root certificates. Provide the certificates in all connections to the RDS instance.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by guptatrng at Sept. 8, 2022, 6:52 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BECAUSE
1 year, 11 months ago
Selected Answer: D
D is the answer
upvoted 1 times
...
nymets
2 years, 8 months ago
Selected Answer: D
The answer is D. Amazon RDS creates an SSL/TLS certificate and installs the certificate on the DB instance when Amazon RDS provisions the instance. We can download a root certificate that works for all AWS Regions.
upvoted 2 times
...
guptatrng
2 years, 8 months ago
Not sure but D...
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago