SAA-C03 · Question #788
SAA-C03 Question #788: Real Exam Question with Answer & Explanation
The correct answer is D: Use IAM roles to assign permissions to the EC2 instances. Configure the applications to obtain a. RDS IAM authentication allows applications to authenticate to the PostgreSQL database using temporary tokens instead of long-term credentials. By assigning IAM roles to the EC2 instances, applications can securely obtain a token at runtime to connect to the database, eliminating
Question
A company is designing a secure solution to grant access to its Amazon RDS for PostgreSQL database. Applications that run on Amazon EC2 instances must be able to securely authenticate to the database without storing long-term credentials. Which solution will meet these requirements?
Options
- AEnable RDS IAM authentication and configure AWS Secrets Manager to store database
- BConfigure a custom IAM policy for the database that allows access from the EC2 instances' IP
- CSet up an IAM user for each application. Store the access key ID and secret access key in the
- DUse IAM roles to assign permissions to the EC2 instances. Configure the applications to obtain a
Explanation
RDS IAM authentication allows applications to authenticate to the PostgreSQL database using temporary tokens instead of long-term credentials. By assigning IAM roles to the EC2 instances, applications can securely obtain a token at runtime to connect to the database, eliminating the need to store passwords and maintaining security best practices.
Community Discussion
No community discussion yet for this question.