Multiple Choice
A SysOps administrator is re-architecting an application. The SysOps administrator has moved the database from a public subnet, where the database used a public endpoint, into a private subnet to restrict access from the public network. After this change, an AWS Lambda function that requires read access to the database cannot connect to the database. The SysOps administrator must resolve this issue without compromising security. Which solution meets these requirements?
A) Create an AWS PrivateLink interface endpoint for the Lambda function. Connect to the database using its private endpoint.
B) Connect the Lambda function to the database VPC. Connect to the database using its private endpoint.
C) Attach an IAM role to the Lambda function with read permissions to the database.
D) Move the database to a public subnet. Use security groups for secure access.
Correct Answer:
Verified
Correct Answer:
Verified
Q408: A company's website went down for several
Q409: A user is trying to delete an
Q410: The Security team at AnyCompany discovers that
Q411: A company creates custom AMI images by
Q412: A user is trying to connect to
Q414: Do Amazon EBS volumes persist independently from
Q415: A company wants to review the security
Q416: A user has created a VPC with
Q417: What is a security group in Amazon
Q418: A user is using Cloudformation to launch