nerdexam
Amazon

DVA-C02 · Question #9

A developer is creating an application that includes an Amazon API Gateway REST API in the us- east-2 Region. The developer wants to use Amazon CloudFront and a custom domain name for the API. The dev

The correct answer is D. Import the SSL/TLS certificate into AWS Certificate Manager (ACM) in the us-east-1 Region.. To use a certificate in AWS Certificate Manager (ACM) to require HTTPS between viewers and CloudFront, make sure you request (or import) the certificate in the US East (N. Virginia) Region https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/cnames-and-https- requir

Submitted by kavita_s· Mar 5, 2026Deployment

Question

A developer is creating an application that includes an Amazon API Gateway REST API in the us- east-2 Region. The developer wants to use Amazon CloudFront and a custom domain name for the API. The developer has acquired an SSL/TLS certificate for the domain from a third-party provider. How should the developer configure the custom domain for the application?

Options

  • AImport the SSL/TLS certificate into AWS Certificate Manager (ACM) in the same Region as the
  • BImport the SSL/TLS certificate into CloudFront. Create a DNS CNAME record for the custom
  • CImport the SSL/TLS certificate into AWS Certificate Manager (ACM) in the same Region as the
  • DImport the SSL/TLS certificate into AWS Certificate Manager (ACM) in the us-east-1 Region.

How the community answered

(22 responses)
  • A
    5% (1)
  • D
    95% (21)

Explanation

To use a certificate in AWS Certificate Manager (ACM) to require HTTPS between viewers and CloudFront, make sure you request (or import) the certificate in the US East (N. Virginia) Region https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/cnames-and-https- requirements.html https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/CNAMEs.html

Community Discussion

No community discussion yet for this question.

Full DVA-C02 Practice