A customer is moving from an on-premises to a public cloud deployment.
What is the best and most cost-effective option to secure the server key?
A.
Install the Vault in the cloud the same way that you would in an on-premises environment. Place the server key in a password protected folder on the operating system.
B.
Install the Vault in the cloud the same way that you would in an on-premises environment. Purchase a Hardware Security Module to secure the server key.
C.
Install the Vault using the Amazon Machine Images and secure the server key using native cloud Key Management Systems.
D.
Install the Vault using the Amazon Machine Images and secure the server key with a Hardware Security Module.
C is Correct
https://docs.cyberark.com/pam-self-hosted/Latest/en/Content/PAS%20Cloud/ChangeServerKeys-cloud.htm#:~:text=To%20ensure%20the%20security%20of%20the%20keys%20in%20AWS%2C%20it%20is%20recommended%20to%20follow%20AWS%20best%20practices%20and%20encrypt%20them%20with%20KMS
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
d5ea0d0
10 months, 1 week agoomardw
1 year, 1 month ago