SCS-C02 · Question #113
SCS-C02 Question #113: Real Exam Question with Answer & Explanation
Sign in or unlock SCS-C02 to reveal the answer and full explanation for question #113. The question stem and answer options stay visible for context.
Question
A security engineer is working with a product team building a web application on AWS. The application uses Amazon S3 to host the static content, Amazon API Gateway to provide RESTful services, and Amazon DynamoDB as the backend data store. The users already exist in a directory that is exposed through a SAML identity provider. Which combination of the following actions should the engineer take to allow users to be authenticated into the web application and call APIs? (Choose three.)
Options
- ACreate a custom authorization service using AWS Lambda.
- BConfigure a SAML identity provider in Amazon Cognito to map attributes to the Amazon Cognito
- CConfigure the SAML identity provider to add the Amazon Cognito user pool as a relying party.
- DConfigure an Amazon Cognito identity pool to integrate with social login providers.
- EUpdate DynamoDB to store the user email addresses and passwords.
- FUpdate API Gateway to use a COGNITO_USER_POOLS authorizer.
Unlock SCS-C02 to see the answer
You've previewed enough free SCS-C02 questions. Unlock SCS-C02 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.