Answer-first summary for fast verification
Answer: Utilize Amazon EventBridge to create a rule detecting certificates expiring in 30 days, invoking an AWS Lambda function to send alerts via Amazon SNS.
The correct answer is D. Creating an Amazon EventBridge (Amazon CloudWatch Events) rule to detect certificates expiring within 30 days and configuring it to invoke an AWS Lambda function ensures automated detection and processing. The Lambda function can then be set to send notifications via Amazon SNS, which is a scalable and highly customizable alerting method. This workflow provides an effective and automated solution to meet the company's requirement.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company uses AWS Certificate Manager (ACM) for certificates in Elastic Load Balancers within AWS Cloud. How should the architect set up notifications for the security team 30 days prior to certificate expiration?
A
Implement an ACM rule to send daily messages to an Amazon SNS topic, starting 30 days before certificate expiration.
B
Establish an AWS Config rule to monitor certificates expiring within 30 days, triggering an Amazon SNS alert via Amazon EventBridge when noncompliant.
C
Leverage AWS Trusted Advisor for monitoring certificates nearing expiration and set an Amazon CloudWatch alarm for status changes, with alerts sent via Amazon SNS.
D
Utilize Amazon EventBridge to create a rule detecting certificates expiring in 30 days, invoking an AWS Lambda function to send alerts via Amazon SNS.
No comments yet.