Podcast
Questions and Answers
What is the best way to meet the requirements of encrypting the application at the edge with a certificate issued by an external CA and rotating it annually?
What is the best way to meet the requirements of encrypting the application at the edge with a certificate issued by an external CA and rotating it annually?
What is the incorrect way to ensure encryption at the edge with a certificate issued by an external CA and annual rotation?
What is the incorrect way to ensure encryption at the edge with a certificate issued by an external CA and annual rotation?
Which action would NOT meet the requirement of rotating the SSL/TLS certificate annually?
Which action would NOT meet the requirement of rotating the SSL/TLS certificate annually?
Which approach does NOT align with best practices for managing SSL/TLS certificates in AWS?
Which approach does NOT align with best practices for managing SSL/TLS certificates in AWS?
Signup and view all the answers
What would be a suboptimal approach for managing SSL/TLS certificates for an ALB in AWS?
What would be a suboptimal approach for managing SSL/TLS certificates for an ALB in AWS?
Signup and view all the answers
Which option would NOT be suitable for ensuring encryption with a valid SSL/TLS certificate on an ALB in AWS?
Which option would NOT be suitable for ensuring encryption with a valid SSL/TLS certificate on an ALB in AWS?
Signup and view all the answers
What is the most cost-effective way for the company to avoid Regional data transfer charges?
What is the most cost-effective way for the company to avoid Regional data transfer charges?
Signup and view all the answers
How can the company automatically rotate the SSL/TLS certificate for the ALB?
How can the company automatically rotate the SSL/TLS certificate for the ALB?
Signup and view all the answers
What is the correct combination of steps for the solutions architect to connect from the on-premises network to the bastion host and the application servers?
What is the correct combination of steps for the solutions architect to connect from the on-premises network to the bastion host and the application servers?
Signup and view all the answers
What should be done to allow access from on-premises network through the company's internet connection to the bastion host and application servers?
What should be done to allow access from on-premises network through the company's internet connection to the bastion host and application servers?
Signup and view all the answers
What action should be taken to connect from on-premises network through the company's internet connection to the bastion host and application servers?
What action should be taken to connect from on-premises network through the company's internet connection to the bastion host and application servers?
Signup and view all the answers
Which method should be used to notify when the SSL/TLS certificate is nearing expiration?
Which method should be used to notify when the SSL/TLS certificate is nearing expiration?
Signup and view all the answers
What would be a suitable solution for connecting securely to Linux-based application instances on Amazon EC2 in a private subnet?
What would be a suitable solution for connecting securely to Linux-based application instances on Amazon EC2 in a private subnet?
Signup and view all the answers
How can data transfer charges be minimized when EC2 instances download and upload images to Amazon S3?
How can data transfer charges be minimized when EC2 instances download and upload images to Amazon S3?
Signup and view all the answers
What's a secure way for systems administrators to connect from on-premises network through company's internet connection to bastion host and application servers?
What's a secure way for systems administrators to connect from on-premises network through company's internet connection to bastion host and application servers?
Signup and view all the answers