Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Amazon Exam SAP-C02 Topic 8 Question 40 Discussion

Actual exam question for Amazon's SAP-C02 exam
Question #: 40
Topic #: 8
[All SAP-C02 Questions]

A company needs to use an AWS Transfer Family SFTP-enabled server with an Amazon S3 bucket to receive updates from a third-party data supplier. The data is encrypted with Pretty Good Privacy (PGP) encryption The company needs a solution that will automatically decrypt the data after the company receives the data

A solutions architect will use a Transfer Family managed workflow The company has created an 1AM service role by using an 1AM policy that allows access to AWS Secrets Manager and the S3 bucket The role's trust relationship allows the transfer amazonaws com service to assume the rote

What should the solutions architect do next to complete the solution for automatic decryption'?

Show Suggested Answer Hide Answer
Suggested Answer: C

Store the PGP Private Key:

Step 1: In the AWS Management Console, navigate to AWS Secrets Manager.

Step 2: Store the PGP private key in Secrets Manager. Ensure the key is encrypted and properly secured.

Set Up the Transfer Family Managed Workflow:

Step 1: In the AWS Transfer Family console, create a new managed workflow.

Step 2: Add a nominal step to the workflow that includes the decryption of the files. Configure this step with the PGP decryption parameters, referencing the PGP private key stored in Secrets Manager.

Step 3: Associate this workflow with the Transfer Family SFTP server, ensuring that incoming files are automatically decrypted upon receipt.

This solution ensures that the data is securely decrypted as it is transferred from the SFTP server to the S3 bucket, automating the decryption process and leveraging AWS Secrets Manager for key management.

Reference

AWS Transfer Family Documentation

Using AWS Secrets Manager for Managing Secrets

AWS Transfer Family Managed Workflows


by Lashonda at Sep 18, 2024, 03:30 PM

Limited Time Offer

25%

Off

Get Premium SAP-C02 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Jettie
2 months ago
Option C all the way! Gotta love those AWS Secrets, they're like the secret sauce of the cloud world. *winks*
upvoted 0 times
...
Belen
2 months ago
Hmm, this one's got me stumped. Maybe I should just go with my gut and choose Option C. What could go wrong, right? *nervous laughter*
upvoted 0 times
Lauran
18 days ago
User3: I agree, let's go with Option C and see how it goes.
upvoted 0 times
...
Bettina
19 days ago
User2: Yeah, it seems like the most logical option.
upvoted 0 times
...
Zona
21 days ago
User1: I think Option C sounds like a good choice.
upvoted 0 times
...
...
Deandrea
2 months ago
This is a tricky one, but I think Option C is the way to go. Can't wait to see what kind of PGP encryption parameters we'll need to configure!
upvoted 0 times
Filiberto
1 months ago
Once we associate the workflow with the Transfer Family server, we should be all set for automatic decryption.
upvoted 0 times
...
Silvana
2 months ago
It's important to store the PGP private key in Secrets Manager for security.
upvoted 0 times
...
Sonia
2 months ago
I think we'll need to configure the PGP decryption parameters in the nominal step.
upvoted 0 times
...
Gail
2 months ago
I agree, Option C seems like the best choice for automatic decryption.
upvoted 0 times
...
...
Sang
3 months ago
I agree with Paola. Option C seems like the right way to handle the automatic decryption of the files.
upvoted 0 times
Janet
1 months ago
Yes, it seems like the most straightforward way to ensure the data is automatically decrypted.
upvoted 0 times
...
Joanna
1 months ago
I agree, storing the PGP private key in Secrets Manager and configuring decryption parameters in the workflow makes sense.
upvoted 0 times
...
Shawana
2 months ago
I think option C is the best choice for automatic decryption.
upvoted 0 times
...
...
Irma
3 months ago
I'm not sure, option C also sounds like a valid choice. Storing the PGP private key and configuring decryption parameters in the workflow could work too
upvoted 0 times
...
Paola
3 months ago
Option C makes the most sense to me. Storing the private key in Secrets Manager and adding a decryption step in the workflow seems like the logical approach.
upvoted 0 times
Nenita
2 months ago
It's important to configure the PGP decryption parameters in the workflow for a smooth process.
upvoted 0 times
...
Miriam
2 months ago
Adding a decryption step in the workflow will ensure the data is automatically decrypted.
upvoted 0 times
...
Elvera
2 months ago
Storing the private key in Secrets Manager is a secure way to handle decryption.
upvoted 0 times
...
Anna
2 months ago
I agree, option C seems like the right choice for automatic decryption.
upvoted 0 times
...
...
Merlyn
3 months ago
I agree with Leonor, storing the PGP public key in Secrets Manager and configuring PGP encryption parameters in the workflow seems like the right approach
upvoted 0 times
...
Leonor
3 months ago
I think the solutions architect should choose option A
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77