Which solution should a SysOps administrator choose to meet these requirements?
Configure AWS Key Management Service (AWS KMS) to automatically rotate the keys for the DB instance. Use RDS Proxy to handle the increases in database connections.
Configure AWS Key Management Service (AWS KMS) to automatically rotate the keys for the DB instance. Use RDS read replicas to handle the increases in database connections.
Configure AWS Secrets Manager to automatically rotate the credentials for the DB instance. Use RDS Proxy to handle the increases in database connections.
Configure AWS Secrets Manager to automatically rotate the credentials for the DB instance. Use RDS read replicas to handle the increases in database connections.
Explanations:
AWS KMS is primarily used for key management and encryption, not for rotating database credentials. RDS Proxy can handle increases in database connections but does not address credential rotation.
Similar to option A, AWS KMS is not suitable for rotating database credentials. RDS read replicas can help with read scalability but will not effectively manage write-intensive workloads or handle connection spikes directly.
AWS Secrets Manager is designed to manage and automatically rotate database credentials securely. RDS Proxy can help manage variable client connections and improve the handling of write-intensive traffic.
While AWS Secrets Manager is suitable for credential rotation, RDS read replicas are primarily used for read scaling and do not help manage write-intensive traffic or variable connections effectively.