Ultimate access to all questions.
Upgrade Now 🚀
Sign in to unlock AI tutor
A developer must enhance an AWS Lambda function's connectivity to an Amazon RDS MySQL database by securely managing and rotating credentials, previously stored in an S3 bucket. What is the most efficient solution with minimal management overhead?
A
Utilize AWS Systems Manager Parameter Store for credential storage, enable automatic rotation, and apply AWS KMS for encryption, accessing the parameter from Lambda for database connection.
B
Encrypt credentials with AWS KMS, store as Lambda environment variables, and create a secondary Lambda for credential rotation, scheduled by EventBridge, then connect to the database using decrypted credentials.
C
Employ AWS Secrets Manager for secure credential storage with automatic rotation, set for Amazon RDS database credentials, encrypted with AWS KMS, and integrate with Lambda for database access.
D
Encrypt credentials with AWS KMS, store in DynamoDB, and establish a secondary Lambda for credential rotation, scheduled by EventBridge, updating the database and retrieving credentials for connection from DynamoDB.
