A company's AWS architecture currently uses access keys and secret access keys stored on each instance to access AWS services. Database credentials are hard-coded on each instance. SSH keys for command-line remote access are stored in a secured Amazon S3 bucket. The company has asked its solutions architect to improve the security posture of the architecture without adding operational complexity. Which combination of steps should the solutions architect take to accomplish this? (Choose three.)
A) Use Amazon EC2 instance profiles with an IAM role
B) Use AWS Secrets Manager to store access keys and secret access keys
C) Use AWS Systems Manager Parameter Store to store database credentials
D) Use a secure fleet of Amazon EC2 bastion hosts for remote access
E) Use AWS KMS to store database credentials
F) Use AWS Systems Manager Session Manager for remote access
Correct Answer:
Verified
Q712: A user is running a critical batch
Q713: A weather service provides high-resolution weather maps
Q714: A company has an on-premises monitoring solution
Q715: The following policy can be attached to
Q716: Your company policies require encryption of sensitive
Q718: A company is running an Apache Hadoop
Q719: A company uses AWS Organizations to manage
Q720: A company wants to change its internal
Q721: A company standardized its method of deploying
Q722: A company CFO recently analyzed the company's
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents