An Amazon EC2 instance has a secondary Amazon Elastic Block Store (EBS) volume attached that contains sensitive data. A new company policy requires the secondary volume to be encrypted at rest. Which solution will meet this requirement?
A) Create a snapshot of the volume. Create a new volume from the snapshot with the Encrypted parameter set to true. Detach the original volume and attach the new volume to the instance.
B) Create an encrypted Amazon Machine Image (AMI) of the EC2 instance. Launch a new instance with the encrypted AMI. Terminate the original instance.
C) Stop the EC2 instance. Encrypt the volume with AWS CloudHSM. Start the instance and verify encryption.
D) Stop the EC2 instance. Modify the instance properties and set the Encrypted parameter to true. Start the instance and verify encryption.
Correct Answer:
Verified
Q914: A user has launched an EBS backed
Q915: An application resides on multiple EC2 instances
Q916: Malicious traffic is reaching company web servers.
Q917: A SysOps Administrator has configured a CloudWatch
Q918: As part of an operational audit, an
Q920: An e-commerce company wants to lower costs
Q921: An organization has decided to consolidate storage
Q922: A SysOps Administrator deployed an AWS Elastic
Q923: A SysOps Administrator is using AWS KMS
Q924: A web application runs on Amazon EC2
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents