An application running on Amazon EC2 opens connections to an Amazon RDS SQL Server database. The developer does not want to store the user name and password for the database in the code. The developer would also like to automatically rotate the credentials. What is the MOST secure way to store and access the database credentials?
A) Create an IAM role that has permissions to access the database. Attach the role to the EC2 instance.
B) Use AWS Secrets Manager to store the credentials. Retrieve the credentials from Secrets Manager as needed.
C) Store the credentials in an encrypted text file in an Amazon S3 bucket. Configure the EC2 instance's user data to download the credentials from Amazon S3 as the instance boots.
D) Store the user name and password credentials directly in the source code. No further action is needed because the source code is stored in a private repository.
Correct Answer:
Verified
Q395: A developer works in an environment with
Q396: A company is creating an application that
Q397: An application running on multiple Amazon EC2
Q398: A Developer is trying to deploy a
Q399: A Developer wants the ability to roll
Q401: An application development team decides to use
Q402: A developer is designing a distributed application
Q403: A developer is asked to integrate Amazon
Q404: A Development team decides to adopt a
Q405: An IAM role is attached to an
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents