Exam AWS Certified Cloud Practitioner CLF-C02 topic 1 question 120 discussion

both are correct but the question here is the MOST cost effective and that is Parameter Store that is free while Secret Manager is $1 per secret

both are correct but the question here is the MOST cost effective and that is Parameter Store that is free while Secret Manager is $1 per secret

Parameter Store, a capability of AWS Systems Manager, provides secure, hierarchical storage for configuration data management and secrets management. You can store data such as passwords, database strings, Amazon Machine Image (AMI) IDs, and license codes as parameter values. https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-parameter-store.html

A. AWS Systems Manager Parameter Store - more cost effective than Secrets Manager

Keyword: Configuration data and passwords for its critical business applications. AWS Systems Manager Parameter Stores uses to configure the data like user name and password, example- User can use this Parameter Store to configure database user name and password in parameter store,and the RDS can able to fetch the details from parameter store. AWS Secrets Manager is user to store the user name and password Answer is A. AWS Systems Manager Parameter Store

Parameter store , more cost effective solution.

A. AWS Systems Manager Parameter Store. AWS Systems Manager Parameter Store provides a secure, hierarchical store for storing configuration data, secrets, and other sensitive information. It offers integration with AWS Identity and Access Management (IAM) for fine-grained access control and provides encryption at rest for enhanced security. While AWS Secrets Manager (option B) is specifically designed for managing secrets such as passwords, API keys, and other sensitive information, it typically incurs higher costs compared to Parameter Store. Parameter Store can efficiently manage both configuration data and secrets, making it a cost-effective solution for the described scenario.

A. AWS Systems Manager Parameter Store AWS Systems Manager Parameter Store is a fully managed service that provides secure, hierarchical storage for configuration data management and secrets management. It allows you to store sensitive information such as passwords, database connection strings, and API keys in a centralized location. Additionally, it offers integration with AWS Identity and Access Management (IAM) for fine-grained access control. Since it is primarily designed for storing configuration data and also offers a free tier, it would likely be the most cost-effective solution for the given requirements.

It clearly asks for "Configuration data" thus only Parameter Store can accomplish this.

AWS Secrets Manager is specifically designed to store, manage, and rotate secrets such as database credentials, API keys, and other sensitive information securely. It provides a centralized and scalable solution for managing secrets, with built-in features for automatic rotation, auditing, and fine-grained access control.

According to ChatGPT: AWS Systems Manager Parameter Store provides a secure, hierarchical storage for configuration data management, including plaintext data such as passwords, as well as other sensitive information. It integrates well with other AWS services and allows you to easily reference parameters in your applications.

AWS Secrets Manager is specifically designed for managing sensitive information such as passwords, database credentials, and API keys securely. It provides centralized control and management of secrets, including automatic rotation and integration with AWS services. With Secrets Manager, you can store and access secrets programmatically through APIs or use them with other AWS services. Additionally, Secrets Manager offers a pay-as-you-go pricing model, making it cost-effective for managing sensitive data securely.

A = CORRECT

Answer is A. Parameter store is a centralized tore to manage configuration data and secret.

My answer is B(AWS Secrets Manager): The parameter store is used for secure management of configuration data and settings information, but is primarily suitable for data in text format. However, for sensitive information such as passwords, AWS Secrets Manager is more suitable.

Parameter Store is the most cost effective

While both can store secrets, Secrets Manager is recommended for secrets due to additional capabilities like automatic rotation, access control, auditing and integration with services. Parameter Store is still useful for securely storing non-secret configuration values and referencing secrets stored in Secrets Manager.