AWS Certified Cloud Practitioner

Get started today

Ultimate access to all questions.

Quick Answer

Answer-first summary for fast verification

Answer: Create an AWS PrivateLink interface endpoint for the Lambda function; connect using the private endpoint.

Lambda in VPC needs to connect privately. Using AWS PrivateLink (interface endpoint for services like RDS if supported, but for DB in private subnet, ensuring Lambda is in same VPC with proper security groups/NACLs, but the option points to PrivateLink for secure private connectivity without public internet. Moving to public compromises security. IAM is for auth not network. Connecting Lambda to DB VPC assumes it's not already.

Author: LeetQuiz Editorial Team

Quick Answer

Answer-first summary for fast verification

Answer: Create an AWS PrivateLink interface endpoint for the Lambda function; connect using the private endpoint.

Author: LeetQuiz Editorial Team

Comments (0)

No comments yet.

A Lambda function cannot connect to a database that was moved to a private subnet. How should this be resolved without compromising security?

Exam-Like

UAnonymous

Last updated: April 30, 2026 at 11:42

Create an AWS PrivateLink interface endpoint for the Lambda function; connect using the private endpoint.

100.0%

Connect the Lambda function to the database VPC; connect using its private endpoint.

0.0%

Attach an IAM role to the Lambda function with read permissions to the database.

Move the database back to a public subnet; use security groups for secure access.