This certification preparation material would help you in getting the jobs in the AWS Fields

AWS Developer Certification : Associate Level AWS Sysops Administrator Certification : Assciate Level AWS Solution Architect Certification : Associate Level AWS Soltion Architect : Professional Level AWS Certified Security Specialty (SCS-C01) AWS Professional certification Exam AWS Certified Big Data – Specialty (BDS-C00) AWS Certified Machine Learning MLS C01 Certification Prepration Materal AWS Solution Architect : Training Associate AWS Advanced Networking Certifications AWS Exam Prepare : Kinesis Data Stream Book : AWS Solution Architect Associate : Little Guide AWS Security Specialization Certification: Little Guide SCS-C01 AWS Package Deal

While applying to the Job you need to mention referred by : | or Website :


Question 19: You have launched EC2 instances in private subnet. And volume attached to this EC2 instances needs to be encrypted. However, using KMS keys should not happen over the internet but should be done ..... Which of the following will help us in implementing this requirement correctly?

  1. Launch EC2 instances and enable the volume encryption. It will take care of accessing KMS service privately.
  2. Attach a policy to KMS which allows request from only specific Source IP by setting aws:SourceIp condition key to the range of IP addresses.
  3. Correct Answer
  4. You have to enable VPC peering between KMS VPC and EC2 instances VPC. And then set the aws:SourceVpce condition key in Key Policy document.

Correct Answer 

Detailed Explanation