A SysOps administrator needs a secure way to connect to AWS Key Management Service (AWS KMS) within a VPC. The SysOps administrator must ensure that connections to AWS KMS do not traverse the internet. What is the MOST secure solution that meets these requirements?
A) Use a bastion host to connect to AWS KMS.
B) Use a NAT gateway to connect to AWS KMS.
C) Use a VPC gateway endpoint for Amazon S3 to connect to AWS KMS.
D) Use a VPC interface endpoint to connect to AWS KMS.
Correct Answer:
Verified
Q959: A company's audit shows that users have
Q960: A SysOps administrator must run a script
Q961: A SysOps administrator wants to encrypt an
Q962: A SysOps administrator is responsible for managing
Q963: A company is hosting a website on
Q965: A company is hosting backend web services
Q966: A SysOps administrator is re-architecting an application.
Q967: A SysOps administrator needs to register targets
Q968: A SysOps Administrator has created an Amazon
Q969: A developer created a new application that
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents