ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Solutions Architect - Associate SAA-C02 All Questions

View all questions & answers for the AWS Certified Solutions Architect - Associate SAA-C02 exam
Go to Exam

Exam AWS Certified Solutions Architect - Associate SAA-C02 topic 1 question 622 discussion

Exam question from Amazon's AWS Certified Solutions Architect - Associate SAA-C02
Question #: 622
Topic #: 1
[All AWS Certified Solutions Architect - Associate SAA-C02 Questions]

A global company is using Amazon API Gateway to design REST APIs for its loyalty club users in the us-east-1 Region and the ap-southeast-2 Region. A solutions architect must design a solution to protect these API Gateway managed REST APIs across multiple accounts from SQL injection and cross-site scripting attacks.
Which solution will meet these requirements with the LEAST amount of administrative effort?

  • A. Set up AWS WAF in both Regions, Associate Regional web ACLs with an API stage.
  • B. Set up AWS Firewall Manager in both Regions. Centrally configure AWS WAF rules.
  • C. Set up AWS Shield in both Regions. Associate Regional web ACLs with an API stage.
  • D. Set up AWS Shield in one of the Regions. Associate Regional web ACLs with an API stage.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by nymets at Sept. 16, 2022, 4:25 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
nymets
Highly Voted 2 years, 9 months ago
Selected Answer: B
To manage WAF across multiple account use AWS Firewall manager. AWS Firewall Manager simplifies your administration and maintenance tasks across multiple accounts and resources for a variety of protections, including AWS WAF, AWS Shield Advanced, Amazon VPC security groups, AWS Network Firewall, and Amazon Route 53 Resolver DNS Firewall. With Firewall Manager, you set up your protections just once and the service automatically applies them across your accounts and resources, even as you add new accounts and resources.
upvoted 6 times
...
BECAUSE
Most Recent 2 years ago
Selected Answer: B
B is the answer
upvoted 1 times
...
sassy2023
2 years, 5 months ago
Setup firewall manager and pre-configure waf rules will not prevent anything. Still requires aws waf for the protection to take place. no?
upvoted 1 times
...
envest
2 years, 8 months ago
IMO: WAF & FW Mgr are regional. https://aws.amazon.com/firewall-manager/faqs/#:~:text=No%2C%20AWS%20Firewall%20Manager%20security%20policies%20are%20region%20specific.
upvoted 1 times
...
rodriiviru
2 years, 9 months ago
Selected Answer: B
Using AWS WAF has several benefits. Additional protection against web attacks using criteria that you specify. You can define criteria using characteristics of web requests such as the following: Presence of SQL code that is likely to be malicious (known as SQL injection). Presence of a script that is likely to be malicious (known as cross-site scripting). AWS Firewall Manager simplifies your administration and maintenance tasks across multiple accounts and resources for a variety of protections. https://docs.aws.amazon.com/waf/latest/developerguide/what-is-aws-waf.html
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel