A SysOps Administrator is using AWS KMS with AWS-generated key material to encrypt an Amazon EBS volume in a company's AWS environment. The Administrator wants to rotate the KMS keys using automatic key rotation, and needs to ensure that the EBS volume encrypted with the current key remains readable. What should be done to accomplish this?
A) Back up the current KMS key and enable automatic key rotation.
B) Create a new key in AWS KMS and assign the key to Amazon EBS.
C) Enable automatic key rotation of the EBS volume key in AWS KMS.
D) Upload ne key material to the EBS volume key in AWS KMS to enable automatic key rotation for the volume.
Correct Answer:
Verified
Q918: As part of an operational audit, an
Q919: An Amazon EC2 instance has a secondary
Q920: An e-commerce company wants to lower costs
Q921: An organization has decided to consolidate storage
Q922: A SysOps Administrator deployed an AWS Elastic
Q924: A web application runs on Amazon EC2
Q925: A company's web application runs on Amazon
Q926: A SysOps Administrator is building a process
Q927: A company has centralized all its logs
Q928: A SysOps Administrator must secure AWS CloudTrail
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents