A SysOps Administrator must ensure all Amazon EBS volumes currently in use, and those created in the future, are encrypted with a specific AWS KMS customer master key (CMK).
What is the MOST efficient way for the Administrator to meet this requirement?
A . Create an AWS Lambda function to run on a daily schedule, and have the function run the aws ec2 describe-volumes –filters encrypted command.
B . Within Aws Config, configure the encrypted-volumes managed rule and specify the key ID of the CM
D . Log in to the AWS Management Console on a daily schedule, then filter the list of volumes by encryption status, then export this list.
E . Create an AWS Lambda function to run on a daily schedule, and have the function run the aws kms describe key command.
Answer: C
Explanation:
Reference: https://docs.aws.amazon.com/kms/latest/developerguide/services-ebs.html
Latest SOA-C01 Dumps Valid Version with 254 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund