In an AWS-based two-tier web application, developers need a solution to prevent hardcoding database credentials and to automate the rotation of these credentials with minimal operational overhead. Which approach best meets these criteria?

Exam-Like

Utilize instance metadata for storing credentials and employ Amazon EventBridge to trigger a Lambda function for simultaneous RDS and metadata updates.

0.0%

Encrypt credentials in an S3 bucket, with EventBridge scheduling a Lambda function for RDS and file updates, incorporating S3 Versioning for rollback.

0.0%

Leverage AWS Secrets Manager for credential storage with automatic rotation and EC2 role-based access.

100.0%

Use AWS Systems Manager Parameter Store for encrypted credential storage, with automatic rotation and EC2 role-based access.

0.0%

AWS Certified Solutions Architect - Associate

Get started today

Comments

In an AWS-based two-tier web application, developers need a solution to prevent hardcoding database credentials and to automate the rotation of these credentials with minimal operational overhead. Which approach best meets these criteria?