A company is planning to store data on Amazon RDS DB instances. The company must encrypt the data at rest. What should a solutions architect do to meet this requirement?

Topic #: - All AWS Certified Solutions Architect - Associate SAA-C02 Questions

A. Create an encryption key, and store the key in AWS Secrets Manager. Use the key to encrypt the DB instances.
B. Generate a certificate in AWS Certificate Manager (ACM). Enable SSL/TLS on the DB instances by using the certificate.
C. Create a customer master key (CMK) in AWS Key Management Service (AWS KMS). Enable encryption for the DB instances. Most Voted
D. Generate a certificate in AWS Identity and Access Management (IAM). Enable SSL/TLS on the DB instances by using the certificate.

- Awsexamhub website is not related to, affiliated with, endorsed or authorized by Amazon.
- Trademarks, certification & product names are used for reference only and belong to Amazon.

A company is planning to store data on Amazon RDS DB instances. The company must encrypt the data at rest. What should a solutions architect do to meet this requirement?

Suggested Answer:

Share this post

Join the Discussion