A new public web application is deployed on AWS that will run behind an Application Load Balancer (ALB). An AWS security expert needs to encrypt the newly deployed application at the edge with an SSL/TLS certificate issued by an external certificate authority. In addition, he needs to ensure the rotation of the certificate yearly before it expires.
Which of the following AWS services can be used to accomplish this?
A . AWS Snowball
B . AWS Certificate Manager
C . AWS Cloud HSM
D . Amazon Elastic Load Balancer
Answer: B
Explanation:
AWS Certificate Manager (ACM) is the service that enables an AWS security expert to manage
SSL/TLS certificates provided by AWS or an external certificate authority. It allows the deployment of the certificate on AWS services such as an Application Load Balancer (ALB) and also handles the renewal and rotation of certificates.
Here’s how ACM would be used for the web application:
Latest 312-40 Dumps Valid Version with 125 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund