ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Database - Specialty All Questions

View all questions & answers for the AWS Certified Database - Specialty exam
Go to Exam

Exam AWS Certified Database - Specialty topic 1 question 277 discussion

Exam question from Amazon's AWS Certified Database - Specialty
Question #: 277
Topic #: 1
[All AWS Certified Database - Specialty Questions]

A company recently launched a mobile app that has grown in popularity during the last week. The company started development in the cloud and did not initially follow security best practices during development of the mobile app. The mobile app gives customers the ability to use the platform anonymously. Platform architects use Amazon ElastiCache for Redis in a VPC to manage session affinity (sticky sessions) and cookies for customers.

The company's security team now mandates encryption in transit and encryption at rest for all traffic. A database specialist is using the AWS CLI to comply with this mandate.

Which combination of steps should the database specialist take to meet these requirements? (Choose three.)

  • A. Create a manual backup of the existing Redis replication group by using the create-snapshot command. Restore from the backup by using the create-replication-group command
  • B. Use the --transit-encryption-enabled parameter on the new Redis replication group
  • C. Use the --at-rest-encryption-enabled parameter on the existing Redis replication group
  • D. Use the --transit-encryption-enabled parameter on the existing Redis replication group
  • E. Use the --at-rest-encryption-enabled parameter on the new Redis replication group
  • F. Create a manual backup of the existing Redis replication group by using the CreateBackupSelection command. Restore from the backup by using the StartRestoreJob command
Show Suggested Answer Hide Answer
Suggested Answer: ABE 🗳️
by Sab at Dec. 1, 2022, 2:35 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Sab
Highly Voted 2 years, 5 months ago
ABE TLS and Encryption at rest cannot be configured on existing cluster. Snapshot CLI command - create-snapshot Restore snapshot to a new cluster :- create-cache-cluster or create-replication-group
upvoted 8 times
...
Mardoyyy
Highly Voted 2 years, 4 months ago
Selected Answer: ABE
ABE TLS and Encryption at rest cannot be configured on existing cluster.
upvoted 5 times
...
DanShone
Most Recent 1 year, 7 months ago
Selected Answer: ABE
TLS and encryption at rest cannot be configured on existing cluster
upvoted 1 times
...
sk1974
2 years, 2 months ago
Could be DAB too . https://docs.aws.amazon.com/AmazonElastiCache/latest/red-ug/in-transit-encryption.html
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago