A company’s application uses standard tier secure string parameters from AWS Systems Manager Parameter Store. The application is receiving error messages when the company tries to update a parameter. The parameter uses an AWS Key Management Service (AWS KMS) customer managed key for encryption and decryption. What are the reasons for the error messages? (Choose two.)

Topic #: - All AWS Certified Security - Specialty Questions

A. The application does not have the kms:Encrypt permission for the customer managed key. Most Voted
B. The customer managed key is already being used to encrypt another secure string parameter.
C. Standard tier secure string parameters cannot use a customer managed key for encryption.
D. The customer managed key that is specified in the application has its key state set to Disabled. Most Voted
E. The customer managed key that is specified in the application is using a key alias instead of a key ID.

- Awsexamhub website is not related to, affiliated with, endorsed or authorized by Amazon.
- Trademarks, certification & product names are used for reference only and belong to Amazon.

Suggested Answer:

Share this post

Join the Discussion