AWS Certified Solutions Architect - Professional
Get started today
Ultimate access to all questions.
Ultimate access to all questions.
A retail company is deploying IoT sensors across all its global stores, where each sensor is equipped with a unique X.509 certificate issued by the company's private Certificate Authority (CA) during manufacturing. These certificates are then assigned to their respective sensors. The challenge is to enable these sensors to transmit data to AWS only after they have been installed in the stores. What solution would ensure this capability?
Explanation:
The correct answer is 'C'. This option correctly specifies the use of an AWS Lambda function for serial number validation, an AWS IoT Core provisioning template that includes the SerialNumber parameter, and adds the Lambda function as a pre-provisioning hook. Importantly, it also registers the CA with AWS IoT Core and sets the allow-auto-registration parameter. This ensures that the sensors can only send data to AWS after they are installed by verifying the serial number, making it the most comprehensive and secure solution among the provided options.