AWS SAA-C03 #157

A company stores data in an Amazon Aurora PostgreSQL DB cluster. The company must store all the data for 5 years and must delete all the data after 5 years. The company also must indefinitely keep audit logs of actions that are performed within the database. Currently, the company has automated backups configured for Aurora.

Which combination of steps should a solutions architect take to meet these requirements? (Choose two.)

A. Take a manual snapshot of the DB cluster.

B. Create a lifecycle policy for the automated backups.

C. Configure automated backup retention for 5 years.

D. Configure an Amazon CloudWatch Logs export for the DB cluster.

E. Use AWS Backup to take the backups and to keep the backups for 5 years.


I apologize for the confusion. Let's break down the requirements and the steps needed to meet them:

  1. Data Retention for 5 Years: The company needs to store all data for 5 years and delete all data after 5 years. This can be achieved by configuring automated backup retention for 5 years in Amazon Aurora PostgreSQL DB cluster¹. However, Amazon Aurora does not support automated backup retention for more than 35 days⁴. Therefore, you might need to consider other backup solutions such as AWS Backup or manual snapshots.

  2. Indefinite Audit Logs: The company needs to keep audit logs of actions performed within the database indefinitely. This can be achieved by using the PostgreSQL Audit extension (pgAudit) which is supported by Aurora PostgreSQL¹. You can also export the DB cluster logs to Amazon CloudWatch Logs¹ for indefinite storage and easy access².

Given these considerations, the correct steps would be:

E. Use AWS Backup to take the backups and to keep the backups for 5 years.

AWS Backup allows you to centralize and automate data protection across AWS services. You can create backup policies known as backup plans, which define when and how you want to back up your AWS resources such as your Amazon Aurora PostgreSQL DB cluster⁴.

D. Configure an Amazon CloudWatch Logs export for the DB cluster.

Exporting the DB cluster logs to Amazon CloudWatch Logs would allow the company to store and access log files indefinitely¹. This would help in keeping an audit trail of all actions performed within the database².

Please note that while option A (taking a manual snapshot of the DB cluster) could potentially be used as part of a backup strategy, it would not provide an automated solution for the 5-year retention requirement. Option B (creating a lifecycle policy for automated backups) is not applicable as Amazon Aurora does not support lifecycle policies for automated backups⁴.

相关推荐
MX_93593 小时前
阿里云参数配置化
阿里云·云计算
AKAMAI3 小时前
通过自动化本地计算磁盘与块存储卷加密保护数据安全
人工智能·云计算
不久之15 小时前
大数据服务完全分布式部署- 其他组件(阿里云版)
分布式·阿里云·云计算
Johny_Zhao1 天前
基于 Docker 的 LLaMA-Factory 全流程部署指南
linux·网络·网络安全·信息安全·kubernetes·云计算·containerd·yum源·系统运维·llama-factory
真上帝的左手1 天前
20. 云计算-云服务模型
云计算
nshkfhwr1 天前
什么是微服务
微服务·云原生·架构·云计算·集群
荣光波比1 天前
Linux(十一)——LVM磁盘配额整理
linux·运维·云计算
牛奶咖啡131 天前
云计算核心技术之容器技术
云计算·容器技术·容器引擎·容器的主要应用场景·docker核心技术·容器编排工具·k8s的运行架构和重要概念
无责任此方_修行中1 天前
从 HTTP 轮询到 MQTT:我们在 AWS IoT Core 上的架构演进与实战复盘
后端·架构·aws
XINVRY-FPGA2 天前
10CL016YF484C8G Altera FPGA Cyclone
嵌入式硬件·网络协议·fpga开发·云计算·硬件工程·信息与通信·fpga