DVA-C02 · Question #48
DVA-C02 Question #48: Real Exam Question with Answer & Explanation
The correct answer is C: Use AWS Secrets Manager with an AWS Key Management Service (AWS KMS) customer. https://aws.amazon.com/premiumsupport/knowledge-center/secrets-manager-share-between- https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and- access_examples_cross.html
Question
A company is implementing an application on Amazon EC2 instances. The application needs to process incoming transactions. When the application detects a transaction that is not valid, the application must send a chat message to the company's support team. To send the message, the application needs to retrieve the access token to authenticate by using the chat API. A developer needs to implement a solution to store the access token. The access token must be encrypted at rest and in transit. The access token must also be accessible from other AWS accounts. Which solution will meet these requirements with the LEAST management overhead?
Options
- AUse an AWS Systems Manager Parameter Store SecureString parameter that uses an AWS Key
- BEncrypt the access token by using an AWS Key Management Service (AWS KMS) customer
- CUse AWS Secrets Manager with an AWS Key Management Service (AWS KMS) customer
- DEncrypt the access token by using an AWS Key Management Service (AWS KMS) AWS
Explanation
https://aws.amazon.com/premiumsupport/knowledge-center/secrets-manager-share-between- https://docs.aws.amazon.com/secretsmanager/latest/userguide/auth-and- access_examples_cross.html
Community Discussion
No community discussion yet for this question.