ExpertEasy1 markMultiple Choice
AWS SAA-C03 · Question 07 · Domain 1.1: Secure Access
A developer needs to pass a database password to an AWS Lambda function. The password must be encrypted and rotated automatically every 30 days. Which AWS service should be used?
A developer needs to pass a database password to an AWS Lambda function. The password must be encrypted and rotated automatically every 30 days. Which AWS service should be used?
Answer options:
A.
AWS Systems Manager Parameter Store
B.
AWS Key Management Service (KMS)
C.
AWS Secrets Manager
D.
AWS Certificate Manager (ACM)
How to approach this question
Look for the keyword 'rotated automatically'. Secrets Manager natively supports this feature.
Full Answer
C.AWS Secrets Manager✓ Correct
AWS Secrets Manager
AWS Secrets Manager helps you protect secrets needed to access your applications, services, and IT resources. It natively supports automatic rotation of credentials.
Common mistakes
Choosing Parameter Store, which is cheaper but lacks native automatic rotation.
Practice the full AWS SAA-C03 Practice Exam 7
65 questions · hints · full answers · grading
More questions from this exam
Q01A company has multiple AWS accounts in an AWS Organizations organization. The security team needs...MediumQ02An application runs on Amazon EC2 instances and needs to access an Amazon S3 bucket. What is the ...EasyQ03A company wants to implement federated access to the AWS Management Console for its employees usi...MediumQ04A company is building a mobile application that requires users to sign in using their social medi...EasyQ05A security team wants to enforce MFA for all IAM users before they can terminate EC2 instances. H...Medium