Bird
0
0

Why does AWS Secrets Manager use versioning for secrets during rotation?

hard📝 Conceptual Q10 of 15
AWS - Advanced Security
Why does AWS Secrets Manager use versioning for secrets during rotation?
ATo replicate secrets across multiple AWS regions.
BTo allow safe testing of new credentials before making them active.
CTo automatically delete old secrets after rotation.
DTo store multiple unrelated secrets under the same name.
Step-by-Step Solution
Solution:

  1. Step 1: Understand secret versioning purpose

    Versioning allows multiple secret versions to exist, enabling testing of new credentials without disrupting current usage.

  2. Step 2: Identify why versioning is critical during rotation

    It ensures the new secret works before switching, preventing downtime or failures.

  3. Final Answer:

    To allow safe testing of new credentials before making them active. -> Option B

  4. Quick Check:

    Versioning = safe credential testing during rotation [OK]
Quick Trick: Versioning enables testing new secrets safely before use [OK]
Common Mistakes:
  • Thinking versioning stores unrelated secrets together
  • Assuming old secrets are deleted immediately
  • Confusing versioning with cross-region replication

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More AWS Quizzes
Advanced Security - Security Hub overview - Quiz 15hard Advanced Security - AWS Config for compliance - Quiz 5medium Advanced Security - KMS for key management - Quiz 3easy Architecture Best Practices - Operational excellence pillar - Quiz 9hard CloudFormation - Why Infrastructure as Code matters - Quiz 8hard CloudFormation - Resources section - Quiz 9hard CloudFormation - CloudFormation vs Terraform awareness - Quiz 15hard ECS and Fargate - ECS cluster concept - Quiz 7medium EKS - Deploying workloads on EKS - Quiz 13medium Route 53 - Domain registration - Quiz 2easy