Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon Exam DBS-C01 Topic 6 Question 94 Discussion

Actual exam question for Amazon's DBS-C01 exam
Question #: 94
Topic #: 6
[All DBS-C01 Questions]

A Database Specialist needs to speed up any failover that might occur on an Amazon Aurora PostgreSQL DB cluster. The Aurora DB cluster currently includes the primary instance and three Aurora Replicas.

How can the Database Specialist ensure that failovers occur with the least amount of downtime for the application?

Show Suggested Answer Hide Answer
Suggested Answer: B, C

by Jolene at Jun 01, 2024, 09:34 PM

Limited Time Offer

25%

Off

Get Premium DBS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Wynell
9 months ago
I like how C and E both focus on encrypting the data, either by restoring or modifying the cluster. Seems like the most robust solutions to the problem.
upvoted 0 times
...
Dorthy
10 months ago
Ha! Downloading an SSH key for a managed service like DocumentDB? That's like trying to dig a tunnel to China. Definitely not the right way to go about this.
upvoted 0 times
Essie
9 months ago
B: E) Activate encryption at rest using the modify-db-cluster command with the ---storage-encrypted parameter set to true. Set the security group of the cluster to allow only the application instance's security group to connect.
upvoted 0 times
...
Wilburn
9 months ago
A: B) Download the SSL .pem public key for Amazon DocumentDB. Add the key to the application package and make sure the application is using the key while connecting to the cluster.
upvoted 0 times
...
...
Junita
10 months ago
D and E both sound like good options to secure the connection. Creating a VPC endpoint and restricting access with a security group policy is a nice approach.
upvoted 0 times
Carol
9 months ago
Yes, setting encryption at rest and controlling access through security groups seems like a solid plan.
upvoted 0 times
...
Theodora
9 months ago
Creating a VPC endpoint and restricting access with a security group policy is a nice approach.
upvoted 0 times
...
Nieves
10 months ago
D and E both sound like good options to secure the connection.
upvoted 0 times
...
...
Silva
10 months ago
I agree with you, Cletus. We also need to create an Amazon DocumentDB VPC endpoint to secure the traffic.
upvoted 0 times
...
Cletus
10 months ago
I think we should definitely activate encryption at rest for the Amazon DocumentDB cluster.
upvoted 0 times
...
Twana
10 months ago
I'm not sure about using SSH for the connection. Isn't that a bit of a hacky solution? B looks like the better option for encrypting the data in transit.
upvoted 0 times
...
Melita
10 months ago
Option C seems the most straightforward way to encrypt the data at rest. Restoring the cluster with encryption enabled is a clean solution.
upvoted 0 times
Glory
9 months ago
E) Activate encryption at rest using the modify-db-cluster command with the ---storage-encrypted parameter set to true. Set the security group of the cluster to allow only the application instance's security group to connect.
upvoted 0 times
...
Cherry
10 months ago
B) Download the SSL .pem public key for Amazon DocumentDB. Add the key to the application package and make sure the application is using the key while connecting to the cluster.
upvoted 0 times
...
Donte
10 months ago
E) Activate encryption at rest using the modify-db-cluster command with the ---storage-encrypted parameter set to true. Set the security group of the cluster to allow only the application instance's security group to connect.
upvoted 0 times
...
Tashia
10 months ago
I agree, Option E is also important to activate encryption at rest. We need to make sure data is secure both in transit and at rest.
upvoted 0 times
...
Ashanti
10 months ago
Yes, activating encryption at rest during the restore process is a simple and effective solution.
upvoted 0 times
...
Rodney
10 months ago
I agree, that seems like the most efficient way to ensure the data at rest is encrypted.
upvoted 0 times
...
Lucina
10 months ago
B) Download the SSL .pem public key for Amazon DocumentDB. Add the key to the application package and make sure the application is using the key while connecting to the cluster.
upvoted 0 times
...
Narcisa
10 months ago
Option C is definitely a good choice. Restoring the cluster with encryption enabled is a clean solution.
upvoted 0 times
...
Lashandra
10 months ago
Option C is definitely the way to go. Restoring the cluster with encryption enabled is the best approach.
upvoted 0 times
...
...

Save Cancel