🔥 3-day streak
AWS Certified SysOps Administrator - Associate134 / 150
Question 134 of 150
A SysOps administrator manages a fleet of EC2 instances running a web application that connects to an RDS database. Currently, the database password is hardcoded in the application configuration files baked into the AMI. Security requires that credentials be stored centrally, encrypted at rest with a customer-managed KMS key, and retrievable by the application at runtime without embedding the value in the AMI or user data. The team wants the simplest AWS-native solution with no additional licensing cost. Which approach should the administrator implement?
Reviewed for accuracy · Report an issueNext question