{"id":337,"date":"2022-02-09T05:51:14","date_gmt":"2022-02-09T05:51:14","guid":{"rendered":"https:\/\/exampracticetests.com\/aws\/Security-Specialty_SCS-C01\/aws-certified-security-specialty-scs-c01-question271\/"},"modified":"2022-02-09T05:51:14","modified_gmt":"2022-02-09T05:51:14","slug":"aws-certified-security-specialty-scs-c01-question271","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/aws\/Security-Specialty_SCS-C01\/aws-certified-security-specialty-scs-c01-question271\/","title":{"rendered":"AWS Certified Security – Specialty SCS-C01 – Question271"},"content":{"rendered":"
A company needs its Amazon Elastic Block Store (Amazon EBS) volumes to be encrypted at all times.
\nDuring a security incident, EBS snapshots of suspicious instances are shared to a forensics account for analysis. A security engineer attempting to share a suspicious EBS snapshot to the forensics account receives the following error:
\n"Unable to share snapshot. An error occurred (OperationNotPermitted) when calling the ModifySnapshotAttribute operation: Encrypted snapshots with EBS default key cannot be shared"
\nWhich combination of steps should the security engineer take in the incident account to complete the sharing operation? (Choose three.)

A.<\/strong> Create a customer managed CMK. Copy the EBS snapshot encrypting the destination snapshot using the new CMK.
B.<\/strong> Allow forensics accounting principals to use the CMK by modifying its policy.
C.<\/strong> Create an Amazon EC2 instance. Attach the encrypted and suspicious EBS volume. Copy data from the suspicious volume to an unencrypted volume. Snapshot the unencrypted volume.
D.<\/strong> Copy the EBS snapshot to the new decrypted snapshot.
E.<\/strong> Restore a volume from the suspicious EBS snapshot. Create an unencrypted EBS volume of the same size.
F.<\/strong> Share the target EBS snapshot with the forensics account.<\/div>\n

<\/p>\n