⚡Flash Sale: 33% off Annual Membership, limited time only!⚡

CompTIA Study Materials
AWS Study Materials
AWS Certified Developer Associate AWS Certified Developer Associate
AWS Certified Developer Associate DVA-C02
AWS Certified Solutions Architect Associate AWS Certified Solutions Architect Associate
AWS Certified Solutions Architect Associate SAA-C03
AWS Cloud Practitioner AWS Cloud Practitioner
AWS Cloud Practitioner CLF-C02
Microsoft Study Materials
Microsoft Azure Fundamentals Microsoft Azure Fundamentals
Microsoft Azure Fundamentals AZ-900

Free AWS Certified Solutions Architect Associate SAA-C03 Practice Question

An organization is running a web service on a fleet of compute instances within a cloud environment. The service needs fine-grained access to a NoSQL database to perform select data retrieval operations. What is the MOST secure method to provision this access while adhering to best practices for credentials management?

  • Generate a fixed database user with credentials stored in the web service's configuration files on each instance.

  • Utilize a user management service to create unique users for every instance, granting them individual permissions to access the database.

  • Attach an instance profile associated with a role that has the necessary permissions to the compute instances.

  • Manually rotate and distribute new API keys periodically to the instances and update the service configuration accordingly.

This question's topic:
AWS Certified Solutions Architect Associate SAA-C03 / 
Design Secure Architectures
Your Score:
Design Secure Architectures
Design Resilient Architectures
Design High-Performing Architectures
Design Cost-Optimized Architectures