DVA-C02 · Question #582
DVA-C02 Question #582: Real Exam Question with Answer & Explanation
Sign in or unlock DVA-C02 to reveal the answer and full explanation for question #582. The question stem and answer options stay visible for context.
Question
A developer is using an AWS CloudFormation template to create a pipeline in AWS CodePipeline. The template creates an Amazon S3 bucket that the pipeline references in a source stage. The template also creates an AWS CodeBuild project for a build stage. The pipeline sends notifications to an Amazon SNS topic. Logs for the CodeBuild project are stored in Amazon CloudWatch Logs. The company needs to ensure that the pipeline's artifacts are encrypted with an existing customer-managed AWS KMS key. The developer has granted the pipeline permissions to use the KMS key. Which additional step will meet these requirements?
Options
- ACreate an Amazon S3 gateway endpoint that the pipeline can access.
- BIn the CloudFormation template, use the KMS key to encrypt the logs in CloudWatch Logs.
- CApply an S3 bucket policy that ensures the pipeline sends only encrypted objects to the S3
- DConfigure the notification topic to use the existing KMS key to enable encryption with the existing
Unlock DVA-C02 to see the answer
You've previewed enough free DVA-C02 questions. Unlock DVA-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.