AmazonAmazon
SOA-C02 · Question #370
SOA-C02 Question #370: Real Exam Question with Answer & Explanation
The correct answer is C: Enable the geo restriction feature in the CloudFront distribution to prevent access from. https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/georestrictions.html
Submitted by kim_seoul· Mar 30, 2026
Question
A company is storing media content in an Amazon S3 bucket and uses Amazon CloudFront to distribute the content to its users. Due to licensing terms, the company is not authorized to distribute the content in some countries. A SysOps administrator must restrict access to certain countries. What is the MOST operationally efficient solution that meets these requirements?
Options
- AConfigure the S3 bucket policy to deny the GetObject operation based on the
- BCreate a secondary origin access identity (OAI). Configure the S3 bucket policy to prevent access
- CEnable the geo restriction feature in the CloudFront distribution to prevent access from
- DUpdate the application to generate signed CloudFront URLs only for IP addresses in authorized
Explanation
https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/georestrictions.html
Community Discussion
No community discussion yet for this question.