ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 75 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 75
Topic #: 1
[All AWS Certified Security - Specialty Questions]

A company plans to move most of its IT infrastructure to AWS. The company wants to leverage its existing on-premises Active Directory as an identity provider for
AWS.
Which steps should be taken to authenticate to AWS services using the company's on-premises Active Directory? (Choose three.)

  • A. Create IAM roles with permissions corresponding to each Active Directory group.
  • B. Create IAM groups with permissions corresponding to each Active Directory group.
  • C. Create a SAML provider with IAM.
  • D. Create a SAML provider with Amazon Cloud Directory.
  • E. Configure AWS as a trusted relying party for the Active Directory
  • F. Configure IAM as a trusted relying party for Amazon Cloud Directory.
Show Suggested Answer Hide Answer
Suggested Answer: ACE 🗳️
Reference:
https://aws.amazon.com/blogs/security/aws-federated-authentication-with-active-directory-federation-services-ad-fs/
by [deleted] at March 27, 2021, 4:31 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Daniel76
Highly Voted 3 years, 9 months ago
Remove D and F, Amazon Cloud Directory it not relevant Remove B Active Directory group should correspond to IAM roles not groups. So A.C, E
upvoted 7 times
...
bkbaws
Most Recent 1 year, 4 months ago
Question should be corrected to mention AD Federated Services (ADFS) as "Active Directory" alone is not a SAML provider
upvoted 2 times
...
ITGURU51
2 years, 1 month ago
Configure AWS as a trusted relying party for the Active Directory. Create a SAML provider with IAM. Create IAM roles with permissions corresponding to each Active Directory group. ACE
upvoted 3 times
...
Prasanta1973
2 years, 6 months ago
No mention of active directory directory service(ADDS) or federation service(ADFS) as former doesn't have SAML capability
upvoted 1 times
...
skillz2investor
2 years, 7 months ago
Selected Answer: ACE
Correct answer
upvoted 1 times
...
roger8978
3 years, 6 months ago
ACE.....
upvoted 1 times
...
kiev
3 years, 8 months ago
ACE ACE baby for me a s well
upvoted 2 times
...
refuz
3 years, 8 months ago
A, C and E
upvoted 4 times
...
sanjaym
3 years, 8 months ago
Ans: ACE 100%
upvoted 4 times
...
Hungdv
3 years, 8 months ago
A, C, E
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel