ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified SysOps Administrator - Associate All Questions

View all questions & answers for the AWS Certified SysOps Administrator - Associate exam
Go to Exam

Exam AWS Certified SysOps Administrator - Associate topic 1 question 337 discussion

Exam question from Amazon's AWS Certified SysOps Administrator - Associate
Question #: 337
Topic #: 1
[All AWS Certified SysOps Administrator - Associate Questions]

A company has a secure website running on Amazon EC2 instances behind an Application Load Balancer (ALB). An SSL certificate from AWS Certificate Manager (ACM) is used on the ALB. Users with legacy web browsers are experiencing issues with the website.

How should the SysOps administrator resolve these issues in the MOST operationally efficient manner?

  • A. Create a new SSL certificate in ACM and install the new certificate on the ALB to support legacy web browsers.
  • B. Create a second ALB and install a custom SSL certificate with a different domain name on the second ALB to support legacy web browsers.
  • C. Remove the ALB from the configuration and install a custom SSL certificate on each web server.
  • D. Update the SSL negotiation configuration of the ALB with a security policy that contains ciphers for legacy web browsers.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Gomer at June 17, 2023, 12:04 a.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Gomer
Highly Voted 10 months, 3 weeks ago
Selected Answer: D
Resolution: - Identify your load balancer's security policy - Determine that protocols and ciphers that are supported by your load balancer's security policy - Update your load balancer's security policy, if necessary https://repost.aws/knowledge-center/elb-fix-ssl-tls-negotiation-error
upvoted 7 times
...
Christina666
Most Recent 9 months, 1 week ago
Selected Answer: D
A client TLS negotiation error means that a TLS connection initiated by the client was unable to establish a session with the load balancer. TLS negotiation errors occur when clients try to connect to a load balancer using a protocol or cipher that the load balancer's security policy doesn't support. To establish a TLS connection, be sure that your client supports the following: One or more matching ciphers A protocol specified in the security policy
upvoted 2 times
Christina666
9 months, 1 week ago
https://docs.aws.amazon.com/elasticloadbalancing/latest/classic/elb-ssl-security-policy.html https://repost.aws/knowledge-center/elb-fix-ssl-tls-negotiation-error
upvoted 1 times
...
...
[Removed]
9 months, 4 weeks ago
DDDDdddddddd
upvoted 2 times
...
Pete987
10 months, 1 week ago
The AWS ALB supports various SSL policies, which define the ciphers and protocols that the ALB uses to negotiate SSL connections. By choosing a security policy that includes compatible ciphers for older browsers, the administrator can address the compatibility issues. This solution allows the company to continue using the ALB, which provides scalability, load balancing, and other benefits, while ensuring accessibility for users with legacy web browsers.
upvoted 2 times
...
Pete987
10 months, 1 week ago
Selected Answer: D
D is the answer
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago