SCS-C03 · Question #85
SCS-C03 Question #85: Real Exam Question with Answer & Explanation
The correct answer is B: Configure AWS Verified Access. Add the application by creating an endpoint for the ALB.. AWS Verified Access allows secure access to applications without requiring a VPN, using a zero- trust model to enforce security conditions, including device posture and identity verification. By configuring Verified Access and adding an endpoint for the Application Load Balancer
Question
A company runs an application on a fleet of Amazon EC2 instances behind an Application Load Balancer (ALB). A security engineer needs to provide secure access to the application without requiring the use of a VPN. Users should be able to access the application only when they meet specific security conditions, including a defined device posture. Which solution will meet these requirements?
Options
- ACreate an AWS WAF web ACL. Configure a custom response to block traffic that does not align
- BConfigure AWS Verified Access. Add the application by creating an endpoint for the ALB.
- CConfigure Amazon Verified Permissions. Use a policy-based access control (PBAC) policy to
- DConfigure Amazon Verified Permissions. Add the application by creating an endpoint for the ALB.
Explanation
AWS Verified Access allows secure access to applications without requiring a VPN, using a zero- trust model to enforce security conditions, including device posture and identity verification. By configuring Verified Access and adding an endpoint for the Application Load Balancer (ALB), the security engineer can ensure that only users who meet specific security conditions can access the application. Verified Access is designed to meet this use case by providing secure access controls based on device posture and other conditions.
Community Discussion
No community discussion yet for this question.