{"id":486,"date":"2021-01-08T06:37:16","date_gmt":"2021-01-08T06:37:16","guid":{"rendered":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/aws-certified-sysops-administrator-soa-c01-question479\/"},"modified":"2021-01-08T06:37:16","modified_gmt":"2021-01-08T06:37:16","slug":"aws-certified-sysops-administrator-soa-c01-question479","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/aws-certified-sysops-administrator-soa-c01-question479\/","title":{"rendered":"AWS Certified SysOps Administrator SOA-C01 &#8211; Question479"},"content":{"rendered":"<div class=\"question\">You need to determine what encryption operations were taken with which key in AWS KMS to ei-ther encrypt or decrypt data in the AWS CodeCommit repository. Which of the following actions will best help you accomplish this? <br \/><strong><br \/>A.<\/strong> Searching for the AWS CodeCommit repository ID in AWS CloudTrail logs <br \/><strong>B.<\/strong> Searching for the encryption key ID in AWS CloudTrail logs <br \/><strong>C.<\/strong> Searching for the AWS CodeCommit repository ID in AWS CloudWatch <br \/><strong>D.<\/strong> Searching for the encryption key ID in AWS CloudWatch<\/div>\n<p><\/p>\n<style> .hidden-div{ display:none } <\/style>\n<p>\t\t\t\t\t\t\t<button onclick=\"getElementById('hidden-div').style.display = 'block'\"> Show Answer <\/button> <button onclick=\"getElementById('hidden-div').style.display = 'none'\">Hide Answer<\/button><\/p>\n<div class=\"hidden-div\" id=\"hidden-div\"><span style=\"\"><\/p>\n<div class=\"answer\">Correct Answer: <strong>A<\/strong><\/div>\n<p><strong>Explanation:<\/strong> <\/p>\n<div class=\"explanation\">\nExplanation: The encryption context is additional authenticated information AWS KMS uses to check for data integrity. When specified for the encryption operation, it must also be specified in the decryption operation or decryption will fail. AWS CodeCommit uses the AWS CodeCommit repository ID for the encryption context. You can find the repository ID by using the get-repository command or by viewing repository details in the AWS CodeCommit console. Search for the AWS CodeCommit repository ID in AWS CloudTrail logs to understand which encryption operations were taken on which key in AWS KMS to encrypt or decrypt data in the AWS CodeCommit repository. Reference: <a href=\"http:\/\/docs.aws.amazon.com\/codecommit\/latest\/userguide\/encryption.html\" title=\"External link\" rel=\"nofollow noopener\" target=\"_blank\">http:\/\/docs.aws.amazon.com\/codecommit\/latest\/userguide\/encryption.html<\/a><\/div>\n<p><\/strong><\/span> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>You need to determine what encryption operations were taken with which key in AWS KMS to ei-ther encrypt or decrypt data in the AWS CodeCommit repository. Which of the following actions will best help you accomplish this? A. Searching for the AWS CodeCommit repository ID in AWS CloudTrail logs B. Searching for the encryption key [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[3,482],"class_list":["post-486","post","type-post","status-publish","format-standard","hentry","category-aws-certified-sysops-administrator-soa-c01","tag-aws-certified-sysops-administrator-soa-c01","tag-question-479"],"_links":{"self":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/posts\/486","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/comments?post=486"}],"version-history":[{"count":0,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/posts\/486\/revisions"}],"wp:attachment":[{"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/media?parent=486"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/categories?post=486"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/wp-json\/wp\/v2\/tags?post=486"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}