U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Amazon SCS-C02 Exam - Topic 6 Question 60 Discussion

[Identity and Access Management]A development team is attempting to encrypt and decode a secure string parameter from the IAM Systems Manager Parameter Store using an IAM Key Management Service (IAM KMS) CMK. However, each attempt results in an error message being sent to the development team.Which CMK-related problems possibly account for the error? (Select two.)
A) The CMK is used in the attempt does not exist. and D) The CMK is used in the attempt is not enabled.
B) The CMK is used in the attempt needs to be rotated.
C) The CMK is used in the attempt is using the CMKs key ID instead of the CMK ARN.
E) The CMK is used in the attempt is using an alias.

Amazon SCS-C02 Exam - Topic 6 Question 60 Discussion

Actual exam question for Amazon's SCS-C02 exam
Question #: 60
Topic #: 6
[All SCS-C02 Questions]

[Identity and Access Management]

A development team is attempting to encrypt and decode a secure string parameter from the IAM Systems Manager Parameter Store using an IAM Key Management Service (IAM KMS) CMK. However, each attempt results in an error message being sent to the development team.

Which CMK-related problems possibly account for the error? (Select two.)

Show Suggested Answer Hide Answer
Suggested Answer: A, D

https://docs.IAM.amazon.com/kms/latest/developerguide/services-parameter-store.html#parameter-store-cmk-fail


Contribute your Thoughts:

0/2000 characters
Cheryl
1 month ago
I remember studying that if a CMK is not enabled, it can't be used for encryption or decryption. So, option D might be a good choice.
upvoted 0 times
...

Save Cancel