DVA-C02 · Question #642
A developer has a financial application. The application uses AWS Secrets Manager to manage an Amazon RDS for PostgreSQL database's username and password. The developer needs to rotate the password wh
The correct answer is D. Rotate the secret by using the single-user rotation strategy. Update the application with an. Using the single-user rotation strategy in AWS Secrets Manager is the simplest and most automated approach for rotating RDS credentials. Secrets Manager handles updating the secret and synchronizing it with the database. With a retry strategy in the application to handle any brie
Question
A developer has a financial application. The application uses AWS Secrets Manager to manage an Amazon RDS for PostgreSQL database's username and password. The developer needs to rotate the password while maintaining the application's high availability. Which solution will meet these requirements with LEAST development effort?
Options
- ARotate the secret by using the alternating-users rotation strategy. Update the application with an
- BUse the PostgreSQL client to create a new database username and password. Include the new
- CRotate the secret by using multivalue answer rotation. Update the application with an appropriate
- DRotate the secret by using the single-user rotation strategy. Update the application with an
How the community answered
(50 responses)- A14% (7)
- B4% (2)
- C6% (3)
- D76% (38)
Explanation
Using the single-user rotation strategy in AWS Secrets Manager is the simplest and most automated approach for rotating RDS credentials. Secrets Manager handles updating the secret and synchronizing it with the database. With a retry strategy in the application to handle any brief authentication failures during rotation, this solution provides high availability with minimal development effort.
Community Discussion
No community discussion yet for this question.