SAP-C02 · Question #200
SAP-C02 Question #200: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #200. The question stem and answer options stay visible for context.
Question
A company is launching a web-based application in multiple regions around the world. The application consists of both static content stored in a private Amazon S3 bucket and dynamic content hosted in Amazon ECS containers content behind an Application Load Balancer (ALB). The company requires that the static and dynamic application content be accessible through Amazon CloudFront only. Which combination of steps should a solutions architect recommend to restrict direct content access to CloudFront? (Choose three.)
Options
- ACreate a web ACL in AWS WAF with a rule to validate the presence of a custom header and
- BCreate a web ACL in AWS WAF with a rule to validate the presence of a custom header and
- CConfigure CloudFront to add a custom header to origin requests.
- DConfigure the ALB to add a custom header to http requests.
- EUpdate the S3 bucket ACL to allow access from the CloudFront distribution only.
- FCreate a CloudFront Origin Access Identity (OAI) and add it to the CloudFront distribution. Update
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.