ExamTopics Logo
Mail Us[email protected]
Menu
Amazon Discussions
exam questions

Exam AWS Certified Security - Specialty All Questions

View all questions & answers for the AWS Certified Security - Specialty exam
Go to Exam

Exam AWS Certified Security - Specialty topic 1 question 347 discussion

Exam question from Amazon's AWS Certified Security - Specialty
Question #: 347
Topic #: 1
[All AWS Certified Security - Specialty Questions]

A company needs a cloud-based, managed desktop solution for its workforce of remote employees. The company wants to ensure that the employees can access the desktops only by using company-provided devices. A security engineer must design a solution that will minimize cost and management overhead.

Which solution will meet these requirements?

  • A. Deploy a custom virtual desktop infrastructure (VDI) solution with a restriction policy to allow access only from corporate devices.
  • B. Deploy a fleet of Amazon EC2 instances. Assign an instance to each employee with certificate-based device authentication that uses Windows Active Directory.
  • C. Deploy Amazon WorkSpaces. Set up a trusted device policy with IP blocking on the authentication gateway by using AWS Identity and Access Management (IAM).
  • D. Deploy Amazon WorkSpaces. Create client certificates, and deploy them to trusted devices. Enable restricted access at the directory level.
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by AdamWest at Nov. 20, 2022, 8:07 p.m.
Disclaimers:
  • - ExamTopics website is not related to, affiliated with, endorsed or authorized by Amazon.
  • - Trademarks, certification & product names are used for reference only and belong to Amazon.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
AdamWest
Highly Voted 2 years, 5 months ago
D - Best practices relates to client Certs. https://docs.aws.amazon.com/whitepapers/latest/best-practices-deploying-amazon-workspaces/security.html
upvoted 8 times
kujin
2 years, 2 months ago
https://docs.aws.amazon.com/whitepapers/latest/best-practices-deploying-amazon-workspaces/security.html#:~:text=Access%20control%20options%20and%20trusted%20devices
upvoted 1 times
...
ITGURU51
2 years ago
you can restrict WorkSpaces access to trusted devices with valid certificates. When you enable this feature, WorkSpaces uses certificate-based authentication to determine whether a device is trusted. If the WorkSpaces client application can’t verify that a device is trusted, it blocks attempts to log in or reconnect from the device.
upvoted 2 times
...
...
Toptip
Most Recent 1 year, 11 months ago
Selected Answer: D
D .. Restrict WorkSpaces access to trusted devices
upvoted 1 times
...
dan80
2 years, 1 month ago
Selected Answer: D
https://docs.aws.amazon.com/workspaces/latest/adminguide/trusted-devices.html
upvoted 2 times
...
D2
2 years, 5 months ago
Selected Answer: D
Answer D
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago