Multiple Choice
A solutions architect is designing a two-tiered architecture that has separate private subnets for compute resources and the database. An AWS Lambda function that is deployed in the compute subnets needs connectivity to the database. Which solution will provide this connectivity in the MOST secure way?
A) Configure the Lambda function to use Amazon RDS Proxy outside the VPC.
B) Associate a security group with the Lambda function. Authorize this security group in the database's security group.
C) Authorize the compute subnet's CIDR ranges in the database's security group.
D) During the initialization phase, authorize all IP addresses in the database's security group temporarily. Remove the rule after the initialization is complete.
Correct Answer:
Verified
Correct Answer:
Verified
Q231: An application running on an Amazon EC2
Q232: An entertainment company is using Amazon DynamoDB
Q233: A company is running a multi-tier web
Q234: A company runs multiple Amazon EC2 Linux
Q235: A company currently stores symmetric encryption keys
Q237: A company is experiencing growth as demand
Q238: A web application must persist order data
Q239: A company wants to run a hybrid
Q240: A company's application hosted on Amazon EC2
Q241: A company wants to automate the security