A security team needs to enforce the rotation of all IAM users' access keys every 90 days. If an access key is found to be older, the key must be made inactive and removed. A solutions architect must create a solution that will check for and remediate any keys older than 90 days. Which solution meets these requirements with the LEAST operational effort?
A) Create an AWS Config rule to check for the key age. Configure the AWS Config rule to run an AWS Batch job to remove the key.
B) Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age. Configure the rule to run an AWS Batch job to remove the key.
C) Create an AWS Config rule to check for the key age. Define an Amazon EventBridge (Amazon CloudWatch Events) rule to schedule an AWS Lambda function to remove the key.
D) Create an Amazon EventBridge (Amazon CloudWatch Events) rule to check for the key age. Define an EventBridge (CloudWatch Events) rule to run an AWS Batch job to remove the key.
Correct Answer:
Verified
Q550: An Amazon EC2 instance is located in
Q551: A company is preparing to deploy a
Q552: A solutions architect needs to design a
Q553: A company hosts its website on Amazon
Q554: A company has many projects that run
Q556: A manufacturing company wants to implement predictive
Q557: A company is running an ASP.NET MVC
Q558: A company is running an application on
Q559: A company hosts an application on AWS
Q560: A company wants to build a scalable
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents