AWS SAA-C03 #157

A company stores data in an Amazon Aurora PostgreSQL DB cluster. The company must store all the data for 5 years and must delete all the data after 5 years. The company also must indefinitely keep audit logs of actions that are performed within the database. Currently, the company has automated backups configured for Aurora.

Which combination of steps should a solutions architect take to meet these requirements? (Choose two.)

A. Take a manual snapshot of the DB cluster.

B. Create a lifecycle policy for the automated backups.

C. Configure automated backup retention for 5 years.

D. Configure an Amazon CloudWatch Logs export for the DB cluster.

E. Use AWS Backup to take the backups and to keep the backups for 5 years.


I apologize for the confusion. Let's break down the requirements and the steps needed to meet them:

  1. Data Retention for 5 Years: The company needs to store all data for 5 years and delete all data after 5 years. This can be achieved by configuring automated backup retention for 5 years in Amazon Aurora PostgreSQL DB cluster¹. However, Amazon Aurora does not support automated backup retention for more than 35 days⁴. Therefore, you might need to consider other backup solutions such as AWS Backup or manual snapshots.

  2. Indefinite Audit Logs: The company needs to keep audit logs of actions performed within the database indefinitely. This can be achieved by using the PostgreSQL Audit extension (pgAudit) which is supported by Aurora PostgreSQL¹. You can also export the DB cluster logs to Amazon CloudWatch Logs¹ for indefinite storage and easy access².

Given these considerations, the correct steps would be:

E. Use AWS Backup to take the backups and to keep the backups for 5 years.

AWS Backup allows you to centralize and automate data protection across AWS services. You can create backup policies known as backup plans, which define when and how you want to back up your AWS resources such as your Amazon Aurora PostgreSQL DB cluster⁴.

D. Configure an Amazon CloudWatch Logs export for the DB cluster.

Exporting the DB cluster logs to Amazon CloudWatch Logs would allow the company to store and access log files indefinitely¹. This would help in keeping an audit trail of all actions performed within the database².

Please note that while option A (taking a manual snapshot of the DB cluster) could potentially be used as part of a backup strategy, it would not provide an automated solution for the 5-year retention requirement. Option B (creating a lifecycle policy for automated backups) is not applicable as Amazon Aurora does not support lifecycle policies for automated backups⁴.

相关推荐
阿里-于怀3 小时前
阿里云刚发布的 AgentLoop 是什么?
人工智能·阿里云·云计算
霸道流氓气质10 小时前
基于阿里云RocketMQ封装库的集成技术示例
阿里云·云计算·rocketmq
spider_xcxc11 小时前
云上网络基石(阿里云):深入解读阿里云VPC及其应用生态
网络·阿里云·云计算·k8s·运维开发·虚拟化
Database_Cool_11 小时前
RAG 混合检索首选:阿里云 Lindorm 向量+全文一体化检索
数据库·阿里云·django·云计算
望江东浪11 小时前
Vector 选型与实战:vs OTel / Logstash / Fluentd 全维对比,及统一日志与指标管道的 AWS ECS 落地
云计算·aws
Akamai中国12 小时前
Akamai收购安全企业浏览器提供商LayerX
人工智能·云原生·云计算·云服务
AKAMAI1 天前
Akamai收购安全企业浏览器提供商LayerX
人工智能·云计算
使用小功能大师1 天前
从零到一:使用阿里云百炼搭建企业级 AI Agent 完全实战手册(2026超详细版)
人工智能·阿里云·云计算
Database_Cool_1 天前
阿里云 RDS 弹性扩容:业务无感升降配实践指南
阿里云·云计算
AOwhisky1 天前
Linux(CentOS)系统管理入门笔记(第四期)——文件系统(下篇):文件与目录操作实战——cpmvmkdirrmln
linux·运维·笔记·centos·云计算·文件系统