Amazon Exam SCS-C01 Topic 5 Question 17 Discussion

Actual exam question for Amazon's SCS-C01 exam

Question #: 17
Topic #: 5

A company is running an application in The eu-west-1 Region. The application uses an AWS Key Management Service (AWS KMS) CMK to encrypt sensitive dat

a. The company plans to deploy the application in the eu-north-1 Region.

A security engineer needs to implement a key management solution for the application deployment in the new Region. The security engineer must minimize changes to the application code.

Which change should the security engineer make to the AWS KMS configuration to meet these requirements?

AUpdate the key policies in eu-west-1. Point the application in eu-north-1 to use the same CMK as the application in eu-west-1.

BAllocate a new CMK to eu-north-1 to be used by the application that is deployed in that Region.

CAllocate a new CMK to eu-north-1. Create the same alias name for both keys. Configure the application deployment to use the key alias.

DAllocate a new CMK to eu-north-1. Create an alias for eu-'-1. Change the application code to point to the alias for eu-'-1.

Show Suggested Answer

Suggested Answer: B

by Nicolette at May 08, 2022, 06:16 AM

Limited Time Offer

25%

Off

Get Premium SCS-C01 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!