Answer-first summary for fast verification
Answer: AWS Secrets Manager
## Explanation AWS Secrets Manager is specifically designed for managing and rotating secrets such as database credentials, API keys, and other sensitive information. Here's why it's the correct choice: ### Key Features of AWS Secrets Manager: - **Automated Secret Rotation**: Can automatically rotate secrets according to a schedule you define - **Secure Storage**: Encrypts secrets at rest using AWS Key Management Service (KMS) - **Database Credential Management**: Has built-in integration with Amazon RDS databases for automatic credential rotation - **Fine-grained Access Control**: Integrates with IAM for controlling who can access secrets ### Why Other Options Are Incorrect: - **AWS IAM**: Manages user identities and permissions, but doesn't handle secret rotation - **AWS Managed Services (AMS)**: Provides operational management services, not specifically secret rotation - **Amazon RDS**: Manages database instances but doesn't provide automated credential rotation capabilities ### Use Case: When you need to regularly rotate database passwords or other credentials to maintain security compliance, AWS Secrets Manager can automatically generate new credentials and update them in both the database and your applications.
Author: Ritesh Yadav
Ultimate access to all questions.
A company needs to schedule the rotation of database credentials in the AWS Cloud. Which AWS service should the company use to perform this task?
A
AWS Identity and Access Management (IAM)
B
AWS Managed Services (AMS)
C
Amazon RDS
D
AWS Secrets Manager
No comments yet.