AWS SAA-C03 #157

A company stores data in an Amazon Aurora PostgreSQL DB cluster. The company must store all the data for 5 years and must delete all the data after 5 years. The company also must indefinitely keep audit logs of actions that are performed within the database. Currently, the company has automated backups configured for Aurora.

Which combination of steps should a solutions architect take to meet these requirements? (Choose two.)

A. Take a manual snapshot of the DB cluster.

B. Create a lifecycle policy for the automated backups.

C. Configure automated backup retention for 5 years.

D. Configure an Amazon CloudWatch Logs export for the DB cluster.

E. Use AWS Backup to take the backups and to keep the backups for 5 years.


I apologize for the confusion. Let's break down the requirements and the steps needed to meet them:

  1. Data Retention for 5 Years: The company needs to store all data for 5 years and delete all data after 5 years. This can be achieved by configuring automated backup retention for 5 years in Amazon Aurora PostgreSQL DB cluster¹. However, Amazon Aurora does not support automated backup retention for more than 35 days⁴. Therefore, you might need to consider other backup solutions such as AWS Backup or manual snapshots.

  2. Indefinite Audit Logs: The company needs to keep audit logs of actions performed within the database indefinitely. This can be achieved by using the PostgreSQL Audit extension (pgAudit) which is supported by Aurora PostgreSQL¹. You can also export the DB cluster logs to Amazon CloudWatch Logs¹ for indefinite storage and easy access².

Given these considerations, the correct steps would be:

E. Use AWS Backup to take the backups and to keep the backups for 5 years.

AWS Backup allows you to centralize and automate data protection across AWS services. You can create backup policies known as backup plans, which define when and how you want to back up your AWS resources such as your Amazon Aurora PostgreSQL DB cluster⁴.

D. Configure an Amazon CloudWatch Logs export for the DB cluster.

Exporting the DB cluster logs to Amazon CloudWatch Logs would allow the company to store and access log files indefinitely¹. This would help in keeping an audit trail of all actions performed within the database².

Please note that while option A (taking a manual snapshot of the DB cluster) could potentially be used as part of a backup strategy, it would not provide an automated solution for the 5-year retention requirement. Option B (creating a lifecycle policy for automated backups) is not applicable as Amazon Aurora does not support lifecycle policies for automated backups⁴.

相关推荐
马里马里奥-4 小时前
在Windows系统部署本地智能问答系统:基于百度云API完整教程
windows·云计算·百度云
AWS官方合作商9 天前
AWS ACM 重磅上线:公有 SSL/TLS 证书现可导出,突破 AWS 边界! (突出新功能的重要性和突破性)
服务器·https·ssl·aws
来自于狂人9 天前
速通Ceph分布式存储(含超详细图解)
云计算
云宏信息9 天前
金融vmware替换过程中关于利旧纳管、迁移、数据安全容灾备份、成本及案例|金融行业数字化QA合集④
大数据·运维·服务器·科技·金融·云计算
成都极云科技9 天前
如何选择适合的服务器托管方案以优化网站性能:提升速度与稳定性的关键决策
运维·服务器·人工智能·云计算·gpu算力
小猴崽9 天前
腾讯云轻量数据库:性能与成本优化的新一代数据解决方案
数据库·云计算·腾讯云
编程乐学(Arfan开发工程师)9 天前
74、单元测试-前置条件
redis·python·阿里云·单元测试·云计算·bootstrap
fanstuck10 天前
AI驱动的DevOps运维与云服务部署自动化
运维·aws·自动化运维
Ultipa10 天前
数据驱动 AI 时代:数据库行业的技术跃迁与生态重构
大数据·数据库·人工智能·重构·云计算·图数据库
忘记安全带10 天前
AWS EC2使用SSM会话管理器连接
服务器·网络·自动化·云计算·aws