AWS Certified Developer Associate DVA-C02 Practice Question
A development team needs to store access credentials for a production database securely. These credentials must be retrievable programmatically by their web application without embedding them directly into the source code or configuration files. Which service should the team use to achieve this with the ability to rotate secrets periodically and audit access?
The service specifically suited for storing and managing secrets, such as database credentials, is the Secrets Manager. It not only allows secure storage and retrieval but also offers features for automatic rotation of secrets and access auditing, matching the team's requirements. Parameter Store does provide secure storage for configuration data and secrets, but it lacks some of the advanced secret management functionalities like built-in secret rotation provided by Secrets Manager. WAF and Certificate Manager serve different purposes entirely; WAF protects web applications from common web exploits, and Certificate Manager deals with SSL/TLS certificates, therefore, neither are appropriate choices for managing database credentials.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is AWS Secrets Manager and how does it work?
Open an interactive chat with Bash
What is secret rotation, and why is it important?
Open an interactive chat with Bash
What are the alternatives to AWS Secrets Manager for managing secrets?
Open an interactive chat with Bash
AWS Certified Developer Associate DVA-C02
Security
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
IT & Cybersecurity Package Join Premium for Full Access