SAP-C02 · Question #131
SAP-C02 Question #131: Real Exam Question with Answer & Explanation
The correct answer is C: Connect to the vendor by way of a VPC endpoint service that uses AWS PrivateLink. With AWS PrivateLink, you can create an endpoint within your Amazon Virtual Private Cloud (Amazon VPC) that provides access to SaaS applications over a secure, private connection that eliminates the exposure of private data to the public internet. https://aws.amazon.com/blogs/apn
Question
A company that runs applications on AWS recently subscribed to a new software-as-a-service (SaaS) data vendor. The vendor provides the data by way of a REST API that the vendor hosts in its AWS environment. The vendor offers multiple options for connectivity to the API and is working with the company to find the best way to connect. The company's AWS account does not allow outbound internet access from its AWS environment. The vendor's services run on AWS in the same AWS Region as me company's applications. A solutions architect must implement connectivity to the vendor's API so that the API is highly available in the company's VPC. Which solution will meet these requirements?
Options
- AConnect o the vendor's public API address for the data service
- BConnect o the vendor by way of a VPC peering connection between the vendor's VPC and the
- CConnect to the vendor by way of a VPC endpoint service that uses AWS PrivateLink
- DConnect to a public bastion host that the vendor provides. Tunnel the API traffic.
Explanation
With AWS PrivateLink, you can create an endpoint within your Amazon Virtual Private Cloud (Amazon VPC) that provides access to SaaS applications over a secure, private connection that eliminates the exposure of private data to the public internet. https://aws.amazon.com/blogs/apn/using-aws-privatelink-integrations-to-access-saas-solutions- partners/#:~:text=With%20AWS%20PrivateLink%2C%20you%20can,data%20to%20the%20publi
Community Discussion
No community discussion yet for this question.