ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Professional SAP-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Professional SAP-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Professional SAP-C02 topic 1 question 476 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Professional SAP-C02
Question #: 476
Topic #: 1
[All AWS Certified Solutions Architect - Professional SAP-C02 Questions]

A software development company has multiple engineers who are working remotely. The company is running Active Directory Domain Services (AD DS) on an Amazon EC2 instance. The company's security policy states that all internal, nonpublic services that are deployed in a VPC must be accessible through a VPN. Multi-factor authentication (MFA) must be used for access to a VPN.

What should a solutions architect do to meet these requirements?

  • A. Create an AWS Site-to-Site VPN connection. Configure integration between a VPN and AD DS. Use an Amazon WorkSpaces client with MFA support enabled to establish a VPN connection.
  • B. Create an AWS Client VPN endpoint. Create an AD Connector directory for integration with AD DS. Enable MFA for AD Connector. Use AWS Client VPN to establish a VPN connection.
  • C. Create multiple AWS Site-to-Site VPN connections by using AWS VPN CloudHub. Configure integration between AWS VPN CloudHub and AD DS. Use AWS Copilot to establish a VPN connection.
  • D. Create an Amazon WorkLink endpoint. Configure integration between Amazon WorkLink and AD DS. Enable MFA in Amazon WorkLink. Use AWS Client VPN to establish a VPN connection.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by CMMC at March 19, 2024, 4:43 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
AzureDP900
5 months, 3 weeks ago
This is no brainer question, B is perfect
upvoted 1 times
...
kgpoj
8 months, 3 weeks ago
Selected Answer: B
ACD are wrong. But for B, it is also not perfect. AD Connector is for connecting between ADDS on premises and AWS. In this case, the ADDS is on AWS's EC2. Do you really need AD Connector?
upvoted 1 times
...
Helpnosense
9 months, 3 weeks ago
No doubt that answer B will collect all the events from accounts in the organizations. But the requirement is "A solutions architect must design a solution that turns on AWS CloudTrail in all AWS accounts." Can answer B turn on AWS CloudTrail in all AWS accounts.?
upvoted 1 times
...
Fu7ed
1 year ago
Answer is B. Client VPN provides Active Directory support by integrating with AWS Directory Service. Client VPN supports multi-factor authentication (MFA) when it's enabled for AWS Managed Microsoft AD or AD Connector. https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/ad.html C. WHY Copilot? D. Worklink is Provide secure mobile access to your internal websites and web apps.
upvoted 1 times
...
Dgix
1 year, 1 month ago
Selected Answer: B
A: Site-to-Site VPN is for connecting networks, not giving users access. B is correct. C is rubbish: AWS Copilot is for deploying containers (and it's bloody good!) D is also rubbish: WorkLink is for website and webapp access, not VPN access.
upvoted 4 times
...
oayoade
1 year, 1 month ago
Selected Answer: B
has to be B
upvoted 2 times
...
CMMC
1 year, 1 month ago
Selected Answer: B
#A - workspaces client for remote desktop access and not for VPN #C - AWS VPN CloudHub for connecting multiple on-premises or offices, and not for individual VPN connection #D - WorkLink for secure access from mobile devices and not for VPN connection
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago