Home / Amazon / SAA-C01 / Question 179

An AWS Lambda function requires access to an Amazon RDS for SQL Server instance. It is against company policy to store passwords in Lambda functions.How can a Solutions Architect enable the Lambda function to retrieve the database password without violating company policy?

• Add an IAM policy for IAM database access to the Lambda execution role.

• Store a one-way hash of the password in the Lambda function.

• Have the Lambda function use the AWS Systems Manager Parameter Store.

• Connect to the Amazon RDS for SQL Server instance by using a role assigned to the Lambda function.