ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Developer Associate All Questions

View all questions & answers for the AWS Certified Developer Associate exam
Go to Exam

Exam AWS Certified Developer Associate topic 1 question 338 discussion

Exam question from Amazon's AWS Certified Developer Associate
Question #: 338
Topic #: 1
[All AWS Certified Developer Associate Questions]

A developer is modifying an existing AWS Lambda function. While checking the code, the developer notices hardcoded parameter values for an Amazon RDS for SQL Server user name, password, database, host, and port. There also are hardcoded parameter values for an Amazon DynamoDB table, an Amazon S3 bucket, and an Amazon Simple Notification Service (Amazon SNS) topic.

The developer wants to securely store the parameter values outside the code in an encrypted format and wants to turn on rotation for the credentials. The developer also wants to be able to reuse the parameter values from other applications and to update the parameter values without modifying code.

Which solution will meet these requirements with the LEAST operational overhead?

  • A. Create an RDS database secret in AWS Secrets Manager. Set the user name, password, database, host, and port. Turn on secret rotation. Create encrypted Lambda environment variables for the DynamoDB table, S3 bucket, and SNS topic.
  • B. Create an RDS database secret in AWS Secrets Manager. Set the user name, password, database, host, and port. Turn on secret rotation. Create SecureString parameters in AWS Systems Manager Parameter Store for the DynamoDB table, S3 bucket, and SNS topic.
  • C. Create RDS database parameters in AWS Systems Manager Parameter Store for the user name, password, database, host, and port. Create encrypted Lambda environment variables for the DynamoDB table, S3 bucket, and SNS topic. Create a Lambda function and set the logic for the credentials rotation task. Schedule the credentials rotation task in Amazon EventBridge.
  • D. Create RDS database parameters in AWS Systems Manager Parameter Store for the user name, password, database, host, and port. Store the DynamoDB table, S3 bucket, and SNS topic in Amazon S3. Create a Lambda function and set the logic for the credentials rotation. Invoke the Lambda function on a schedule.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by k1kavi1 at Nov. 27, 2022, 9:23 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
a15ce96
1 year, 3 months ago
securely store the parameter values outside -> Parameter store, SecureString. With this approach, you can re-use the parameters among different Lambdas (the question also asks for this). rotation for the credentials -> Secrets Manager with no doubts
upvoted 1 times
a15ce96
1 year, 3 months ago
With environment variables like A states, you need to duplicate them across different Lambdas
upvoted 1 times
...
...
gfalconia
1 year, 10 months ago
Selected Answer: A
It's obvious A: The developer also wants to be able to reuse the parameter values from other applications and to update the parameter values without modifying code.
upvoted 3 times
...
pancman
2 years, 4 months ago
Selected Answer: B
B is correct. https://docs.aws.amazon.com/systems-manager/latest/userguide/integration-ps-secretsmanager.html
upvoted 2 times
...
michaldavid
2 years, 7 months ago
Selected Answer: B
B is correct
upvoted 3 times
...
k1kavi1
2 years, 7 months ago
Selected Answer: B
Agreed
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel