A Developer is publishing critical log data to a log group in Amazon CloudWatch Logs, which was created 2 months ago. The Developer must encrypt the log data using an AWS KMS customer master key (CMK) so future data can be encrypted to comply with the company's security policy. How can the Developer meet this requirement?
A) Use the CloudWatch Logs console and enable the encrypt feature on the log group
B) Use the AWS CLI create-log-group command and specify the key Amazon Resource Name (ARN)
C) Use the KMS console and associate the CMK with the log group
D) Use the AWS CLI associate-kms-key command and specify the key Amazon Resource Name (ARN)
Correct Answer:
Verified
Q115: A Developer has written an Amazon Kinesis
Q116: A Developer implemented a static website hosted
Q117: A Developer has built an application running
Q118: A Developer is building an application that
Q119: An application ingests a large number of
Q121: A developer needs to manage AWS infrastructure
Q122: A Developer is migrating existing applications to
Q123: A company wants to containerize an existing
Q124: A Developer has an application that must
Q125: A developer is writing an AWS Lambda
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents