AWS Certified Cloud Practitioner
Get started today
Ultimate access to all questions.
Deep dive into the quiz with AI chat providers.
We prepare a focused prompt with your quiz and certificate details so each AI can offer a more tailored, in-depth explanation.
A company needs to schedule the rotation of database credentials in the AWS Cloud. Which AWS service should the company use to perform this task?
Real Exam
Community
RRitesh
A
AWS Identity and Access Management (IAM)
B
AWS Managed Services (AMS)
C
Amazon RDS
D
AWS Secrets Manager
Explanation:
Explanation
AWS Secrets Manager is specifically designed for managing and rotating secrets such as database credentials, API keys, and other sensitive information. Here's why it's the correct choice:
Key Features of AWS Secrets Manager:
-
Automated Secret Rotation: Can automatically rotate secrets according to a schedule you define
-
Secure Storage: Encrypts secrets at rest using AWS Key Management Service (KMS)
-
Database Credential Management: Has built-in integration with Amazon RDS databases for automatic credential rotation
-
Fine-grained Access Control: Integrates with IAM for controlling who can access secrets
Why Other Options Are Incorrect:
-
AWS IAM: Manages user identities and permissions, but doesn't handle secret rotation
-
AWS Managed Services (AMS): Provides operational management services, not specifically secret rotation
-
Amazon RDS: Manages database instances but doesn't provide automated credential rotation capabilities
Use Case:
When you need to regularly rotate database passwords or other credentials to maintain security compliance, AWS Secrets Manager can automatically generate new credentials and update them in both the database and your applications.
Comments
Loading comments...