SAP-C02 · Question #597
SAP-C02 Question #597: Real Exam Question with Answer & Explanation
Sign in or unlock SAP-C02 to reveal the answer and full explanation for question #597. The question stem and answer options stay visible for context.
Question
A company recently migrated a web application from an on-premises data center to the AWS Cloud. The web application infrastructure consists of an Amazon CloudFront distribution that routes to an Application Load Balancer (ALB), with Amazon Elastic Container Service (Amazon ECS) to process requests. A recent security audit revealed that the web application is accessible by using both CloudFront and ALB endpoints. However, the company requires that the web application must be accessible only by using the CloudFront endpoint. Which solution will meet this requirement with the LEAST amount of effort?
Options
- ACreate a new security group and attach it to the CloudFront distribution. Update the ALB security
- BUpdate ALB security group ingress to allow access only from the
- CCreate a com.amazonaws.region.elasticloadbalancing VPC interface endpoint for Elastic Load
- DExtract CloudFront IPs from the AWS provided ip-ranges.json document. Update ALB security
Unlock SAP-C02 to see the answer
You've previewed enough free SAP-C02 questions. Unlock SAP-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.