SAA-C03 · Question #508
SAA-C03 Question #508: Real Exam Question with Answer & Explanation
The correct answer is B: Create a CloudFront distribution and configure the S3 bucket as the origin. This enables global. To serve a static website hosted in Amazon S3 over HTTPS, you must use Amazon CloudFront because S3 does not natively support HTTPS for static website endpoints. Steps to meet HTTPS requirement: edge caching and performance optimization. distribution to handle HTTPS connections.
Question
A solutions architect is creating a website that will be hosted from an Amazon S3 bucket. The website must support secure browser connections (HTTPS). Which combination of actions must the solutions architect take to meet this requirement? (Select TWO.)
Options
- ACreate an Elastic Load Balancing (ELB) load balancer. Configure the load balancer to direct
- BCreate a CloudFront distribution and configure the S3 bucket as the origin. This enables global
- CConfigure the Elastic Load Balancing (ELB) load balancer with an SSL/TLS certificate.
- DAttach an SSL/TLS certificate (typically from AWS Certificate Manager) to the CloudFront
- EConfigure the S3 bucket with an SSL/TLS certificate.
Explanation
To serve a static website hosted in Amazon S3 over HTTPS, you must use Amazon CloudFront because S3 does not natively support HTTPS for static website endpoints. Steps to meet HTTPS requirement: edge caching and performance optimization. distribution to handle HTTPS connections. S3 buckets used as static website hosts only support HTTP directly. While S3 supports HTTPS for REST API access, it does not support HTTPS on static website endpoints. This setup aligns with security best practices and supports the Secure and Operational Excellence pillars of the AWS Well-Architected Framework.
Community Discussion
No community discussion yet for this question.