{"id":641,"date":"2021-01-08T06:40:02","date_gmt":"2021-01-08T06:40:02","guid":{"rendered":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/aws-certified-sysops-administrator-soa-c01-question634\/"},"modified":"2021-01-08T06:40:02","modified_gmt":"2021-01-08T06:40:02","slug":"aws-certified-sysops-administrator-soa-c01-question634","status":"publish","type":"post","link":"https:\/\/exampracticetests.com\/aws\/SysOps_Administrator_SOA-C01\/aws-certified-sysops-administrator-soa-c01-question634\/","title":{"rendered":"AWS Certified SysOps Administrator SOA-C01 – Question634"},"content":{"rendered":"
A company has adopted a security policy that requires all customer data to be encrypted at rest. Currently, customer data is stored on a central Amazon EFS file system and accessed by a number of different applications from Amazon EC2 instances.
\nHow can the SysOps Administrator ensure that all customer data stored on the EFS file system meets the new requirement?

A.<\/strong> Update the EFS file system settings to enable server-side encryption using AES-256.
B.<\/strong> Create a new encrypted EFS file system and copy the data from the unencrypted EFS file system to the new encrypted EFS file system.
C.<\/strong> Use AWS CloudHSM to encrypt the files directly before storing them in the EFS file system.
D.<\/strong> Modify the EFS file system mount options to enable Transport Layer Security (TLS) on each of the EC2 instances.<\/div>\n

<\/p>\n