AWS Certified SysOps Administrator – Associate (legacy) — Question 9

The SysOps Administrator must integrate an existing on-premises asymmetrical key management system into an AWS services platform.
How can the Administrator meet this requirement?

Answer options

• A. Implement AWS KMS and integrate with the existing on-premises asymmetrical key management system
• B. Implement AWS CloudHSM and integrate it with the existing key management infrastructure
• C. Deploy an Amazon EC2 instance and choose an AMI from an AWS partner in the AWS Marketplace
• D. Create a master key in AWS KMS, and export that key to the existing on-premises asymmetrical key management system

Correct answer: C

Explanation

The correct answer is C because deploying an Amazon EC2 instance with a suitable AMI allows for the flexibility needed to integrate the existing key management system. Options A and B suggest using AWS services directly, which may not be compatible with the current on-premises setup. Option D is incorrect as exporting keys from AWS KMS does not align with integrating external systems effectively.