Answer-first summary for fast verification
Answer: Transfer the database to Amazon RDS for Oracle, store the password in AWS Secrets Manager, enable automatic rotation, and schedule it for annual rotation.
The correct answer is B. Migrating the database to Amazon RDS for Oracle and using AWS Secrets Manager for password storage and automatic rotation minimizes operational overhead. AWS Secrets Manager offers native support for automatic password rotation and can be easily configured with a yearly rotation schedule. This solution is more efficient and seamless compared to managing password rotation manually with Lambda functions or using EC2 instances, which add unnecessary complexity and maintenance overhead.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
A company is required to transfer its customer transactions database from an on-premises environment to AWS. This database is currently hosted on an Oracle DB instance running on a Linux server. In response to a new security policy, the company must implement a mechanism to rotate the database password annually. What is the most efficient solution that meets these requirements with minimal operational effort?
A
Transform the database into Amazon DynamoDB using the AWS Schema Conversion Tool (AWS SCT), store the password in AWS Systems Manager Parameter Store, and set up an Amazon CloudWatch alarm to trigger an AWS Lambda function for annual password rotation.
B
Transfer the database to Amazon RDS for Oracle, store the password in AWS Secrets Manager, enable automatic rotation, and schedule it for annual rotation.
C
Move the database to an Amazon EC2 instance, utilize AWS Systems Manager Parameter Store to manage and rotate the connection string through an AWS Lambda function on an annual basis.
D
Convert the database to Amazon Neptune using the AWS Schema Conversion Tool (AWS SCT), and establish an Amazon CloudWatch alarm to activate an AWS Lambda function for annual password rotation.
No comments yet.