Implementing Solution for Data Replication and Compliance
Question
A financial services company located in London (UK) wants to ensure the data stored in their test account S3 bucket should be acopy of the data from the production account S3 bucket.
Data sovereignty laws specify that the data must reside within the UK region.
What steps implement the solution most effectively? (SELECT TWO.)
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D. E. F.Answer: B and E.
Option A is incorrect because S3 lifecycle policies allow you to automatically review objects within your S3 Buckets and have them moved to Glacier or have the objects deleted from S3
They are not responsible for data replication between AWS accounts.
Option B is CORRECT because S3 bucket versioning allows creating a version of objects or data stored in S3
We can ensure data replication from the production S3 bucket to the test account S3 bucket is ongoing by enabling the version.
Option C is incorrect because the Amazon S3 event notification feature enables you to receive notifications when certain events happen in your bucket.
This does not provide a solution to replicate data from the production account to the test account.
Option D is incorrect because Cross Region replication allows S3 data to be copied from one AWS region to another.
Since the ask is to keep the data in the UK region (London), we cannot be using this option.
AWS currently has only one region in the UK.
Option E is CORRECT because S3 Same-Region Replication can be configured on an S3 bucket to replicate objects to another bucket in the same region automatically.
Option F is incorrect because implementing a Lambda function to replicate S3 objects to another bucket is not the optimal solution as it requires creating and managing custom code.
Reference:
https://docs.aws.amazon.com/AmazonS3/latest/dev/Versioning.htm https://docs.aws.amazon.com/AmazonS3/latest/dev/replication.htmlTo ensure that the data stored in the test account S3 bucket is a copy of the data from the production account S3 bucket and to comply with data sovereignty laws that specify the data must reside within the UK region, the most effective steps are:
Configure Same-Region Replication: This allows for the automatic replication of objects in the same region. This feature ensures that the data in the test account S3 bucket is automatically updated with the latest version of the data from the production account S3 bucket. Since data sovereignty laws specify that the data must reside within the UK region, same-region replication ensures that data remains in the same region.
Configure S3 Bucket Lifecycle Policy: This policy defines the actions to be taken on objects in the bucket. A lifecycle policy can be used to transition objects to different storage classes, delete objects, and replicate objects to other regions. A lifecycle policy can be used in conjunction with same-region replication to ensure that data in the test account S3 bucket is updated regularly with the latest data from the production account S3 bucket. This policy can also be used to ensure that data is automatically deleted after a specific period to comply with data retention policies.
Therefore, the correct answers are A and E. Configure S3 Bucket Lifecycle Policy and Configure Same-Region Replication.
Option B is not required because it is not necessary to keep multiple versions of the same object in this scenario. Option C is also not required because event notification is not relevant to the requirements of the scenario. Option D is not applicable because cross-region replication is not required in this scenario, and it may not comply with data sovereignty laws. Option F is not required as same-region replication can be set up without the need for a Lambda function.
