SAA-C03 · Question #496
SAA-C03 Question #496: Real Exam Question with Answer & Explanation
Sign in or unlock SAA-C03 to reveal the answer and full explanation for question #496. The question stem and answer options stay visible for context.
Question
A company uses AWS Lambda functions in a private subnet in a VPC to run application logic. The Lambda functions must not have access to the public internet. Additionally, all data communication must remain within the private network. As part of a new requirement, the application logic needs access to an Amazon DynamoDB table. What is the MOST secure way to meet this new requirement?
Options
- AProvision the DynamoDB table inside the same VPC that contains the Lambda functions.
- BCreate a gateway VPC endpoint for DynamoDB to provide access to the table.
- CUse a network ACL to only allow access to the DynamoDB table from the VPC.
- DUse a security group to only allow access to the DynamoDB table from the VPC.
Unlock SAA-C03 to see the answer
You've previewed enough free SAA-C03 questions. Unlock SAA-C03 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.