New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Amazon DOP-C02 Exam - Topic 1 Question 1 Discussion

Actual exam question for Amazon's DOP-C02 exam
Question #: 1
Topic #: 1
[All DOP-C02 Questions]

A company has developed a serverless web application that is hosted on AWS. The application consists of Amazon S3. Amazon API Gateway, several AWS Lambda functions, and an Amazon RDS for MySQL database. The company is using AWS CodeCommit to store the source code. The source code is a combination of AWS Serverless Application Model (AWS SAM) templates and Python code.

A security audit and penetration test reveal that user names and passwords for authentication to the database are hardcoded within CodeCommit repositories. A DevOps engineer must implement a solution to automatically detect and prevent hardcoded secrets.

What is the MOST secure solution that meets these requirements?

Show Suggested Answer Hide Answer
Suggested Answer: B

by Arthur at Apr 23, 2023, 01:18 AM

Limited Time Offer

25%

Off

Get Premium DOP-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Keneth
4 months ago
Are we sure this will actually prevent hardcoded secrets? Sounds risky.
upvoted 0 times
...
Fabiola
4 months ago
I think Option A could work too, but Secrets Manager is just better overall.
upvoted 0 times
...
Francoise
4 months ago
Wait, hardcoding passwords in CodeCommit? That's a big no-no!
upvoted 0 times
...
Giovanna
4 months ago
I agree, using Secrets Manager is definitely more secure!
upvoted 0 times
...
Francine
4 months ago
Option B seems like the best choice for security. Secrets Manager is solid.
upvoted 0 times
...
Virgilio
5 months ago
I’m a bit confused about the differences between using Parameter Store and Secrets Manager. I hope I remember the right one for this question!
upvoted 0 times
...
Raylene
5 months ago
I feel like the CodeGuru options might not directly address the hardcoded secrets issue. We might need to focus on the repository association instead.
upvoted 0 times
...
Francine
5 months ago
I think we practiced a similar question where we had to choose between Parameter Store and Secrets Manager. Secrets Manager seemed more secure for managing database credentials.
upvoted 0 times
...
Daryl
5 months ago
I remember we discussed using AWS Secrets Manager for storing sensitive information, but I'm not sure if it was the best option for this scenario.
upvoted 0 times
...
Renay
5 months ago
I'm feeling pretty confident about this one. The "readiness to learn" is all about how adults are ready to learn things that are relevant and applicable to their lives. Option A is close, but C really nails it by directly stating that the learner is ready because what they learn will help them function better.
upvoted 0 times
...
Darci
5 months ago
Hmm, I'm not entirely sure about this one. I'll have to think it through carefully before selecting an answer.
upvoted 0 times
...
Rasheeda
5 months ago
This is a good question. I'm a bit confused on the best way to approach it. I'm not sure if the validation rules or sharing rules are the right solution here. I might need to do some more research on the different options to determine the most appropriate approach.
upvoted 0 times
...
Gianna
5 months ago
I think B is correct because the rule about filing within 9 months was emphasized in practice problems.
upvoted 0 times
...
Una
5 months ago
Hmm, I'm a bit unsure about this one. I'll need to think it through carefully to make sure I don't miss anything.
upvoted 0 times
...

Save Cancel