nerdexam
Amazon

DVA-C02 · Question #735

A development team has created an open, public-facing RESTful API in Amazon API Gateway. The team wants to add an authentication mechanism to the API. Which approaches should the development team use

The correct answer is A. Create a user pool in Amazon Cognito and configure API Gateway to use an Amazon Cognito C. Configure API Gateway to use an AWS Lambda authorizer. Implement the authorizer in a. Amazon API Gateway can be integrated with Amazon Cognito user pools to enable token-based authentication, ideal for public APIs that need user sign-in. API Gateway can also use a Lambda authorizer, which allows for custom authentication logic using Lambda functions, offering flex

Submitted by joshua94· Mar 5, 2026Security

Question

A development team has created an open, public-facing RESTful API in Amazon API Gateway. The team wants to add an authentication mechanism to the API. Which approaches should the development team use to accomplish this goal? (Choose two.)

Options

  • ACreate a user pool in Amazon Cognito and configure API Gateway to use an Amazon Cognito
  • BAllow the IP addresses of authorized users. Restrict the security group to allow only these IP
  • CConfigure API Gateway to use an AWS Lambda authorizer. Implement the authorizer in a
  • DAllow the IP addresses of authorized users. Add an Elastic Load Balancing (ELB) load balancer in
  • ECreate a user pool in Amazon Cognito and configure authentication in Amazon Route 53. Create

How the community answered

(18 responses)
  • A
    83% (15)
  • B
    11% (2)
  • E
    6% (1)

Explanation

Amazon API Gateway can be integrated with Amazon Cognito user pools to enable token-based authentication, ideal for public APIs that need user sign-in. API Gateway can also use a Lambda authorizer, which allows for custom authentication logic using Lambda functions, offering flexibility for complex authorization needs.

Community Discussion

No community discussion yet for this question.

Full DVA-C02 Practice