AWS Certified Developer - Associate

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Create and encrypt new AMIs before copying them to the destination Region, then delete the unencrypted originals.

The correct answer is A. Unencrypted AMIs cannot be directly encrypted after creation. Therefore, the developer must create new encrypted AMIs and then copy these to the destination Region. Deleting the original unencrypted AMIs ensures that all AMIs in every Region comply with the encryption requirement.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Create and encrypt new AMIs before copying them to the destination Region, then delete the unencrypted originals.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

How can a developer ensure encrypted AMIs in a new AWS Region while expanding an application, given the requirement for all AMIs to be encrypted and some existing AMIs are unencrypted?

Exam-Like

Create and encrypt new AMIs before copying them to the destination Region, then delete the unencrypted originals.

100.0%

Utilize AWS KMS to encrypt unencrypted AMIs during the copying process to the destination Region.

0.0%

ACM is unrelated to AMI encryption and cannot be used for this purpose.

Enabling encryption by default in the destination Region does not address the encryption status of existing unencrypted AMIs.