Practice Test 2 | AWS Certified Solutions Architect Associate | SAA-C03 | Dumps | Mock Test
You’ve implemented AWS Key Management Service to protect your data in your applications and other AWS services. Your global headquarters is in Northern Virginia (US East (N. Virginia)) where you created your keys and have provided the appropriate permissions to designated users and specific roles within your organization. While the N. American users are not having issues, German and Japanese users are unable to get KMS to function. What is the most likely cause?
A. KMS is only offered in North America
B. AWS CloudTrail has not been enabled to log events
C. KMS master keys are region-specific and the applications are hitting the wrong api endpoints
D. The master keys have been disabled
Explanation:
Answer: C
- C. This is the most likely cause. The application should be sure to hit correct region endpoint.
Incorrect:
- A. KMS is offered in several regions, but keys are not transferrable out of the region they were created in
- B. CloudTrail is recommended for auditing but is not required
- D. The keys are working as expected where they were created; keys are region specific
Reference:
Comments are closed, but trackbacks and pingbacks are open.