A company has multiple business units. Each business unit has its own AWS account and runs a single website within that account. The company also has a single logging account. Logs from each business unit website are aggregated into a single Amazon S3 bucket in the logging account. The S3 bucket policy provides each business unit with access to write data into the bucket and requires data to be encrypted.
The company needs to encrypt logs uploaded into the bucket using a single AWS Key Management Service (AWS KMS) CMK. The CMK that protects the data must be rotated once every 365 days.
Which strategy is the MOST operationally efficient for the company to use to meet these requirements?
Jupi
Highly Voted 3 years, 2 months agomericov
Highly Voted 3 years, 2 months agoandras
Most Recent 1 year, 9 months agounknownUser22952
1 year, 9 months agoHeer
1 year, 10 months agoVash2303
1 year, 10 months agoAwsBRFan
2 years, 1 month agoJonfernz
2 years, 1 month agopek77
2 years, 2 months agoEnigmaaaaaa
2 years, 4 months agoetopics
2 years, 5 months agoWebMaria
2 years, 10 months agoPunitsolanki
2 years, 10 months agoEnigmaaaaaa
2 years, 4 months agoAzureDP900
2 years, 12 months agocldy
2 years, 12 months agojaviems
3 years agobackfringe
3 years agoRVD
3 years agoacloudguru
3 years ago