Summer Sale Limited Time 65% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: pass65

Discussions
  1. Home
  2. Discussions
  3. Amazon Web Services
  4. AWS Certified Professional
  5. DOP-C02 Discussions
  6. DOP-C02 Exam Topic 1 Question 8 Discussion
 Amazon Web Services Discussions
Exam DOP-C02 All Questions
Exam DOP-C02 All Questions

View all questions & answers for the DOP-C02 exam

Go to Exam

Amazon Web Services AWS Certified Professional DOP-C02 Question # 8 Topic 1 Discussion

DOP-C02 Exam Topic 1 Question 8 Discussion:
Question #: 8
Topic #: 1

A company must encrypt all AMIs that the company shares across accounts. A DevOps engineer has access to a source account where an unencrypted custom AMI has been built. The DevOps engineer also has access to a target account where an Amazon EC2 Auto Scaling group will launch EC2 instances from the AMI. The DevOps engineer must share the AMI with the target account.

The company has created an AWS Key Management Service (AWS KMS) key in the source account.

Which additional steps should the DevOps engineer perform to meet the requirements? (Choose three.)
A.

In the source account, copy the unencrypted AMI to an encrypted AMI. Specify the KMS key in the copy action.

B.

In the source account, copy the unencrypted AMI to an encrypted AMI. Specify the default Amazon Elastic Block Store (Amazon EBS) encryption key in the copy action.

C.

In the source account, create a KMS grant that delegates permissions to the Auto Scaling group service-linked role in the target account.

D.

In the source account, modify the key policy to give the target account permissions to create a grant. In the target account, create a KMS grant that delegates permissions to the Auto Scaling group service-linked role.

E.

In the source account, share the unencrypted AMI with the target account.

F.

In the source account, share the encrypted AMI with the target account.

Get Premium DOP-C02 Questions
Actual exam question for Amazon Web Services DOP-C02 exam by Lumen4404 at May 18, 2025, 12:55:45 PM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit